CVE-2025-12866 | Hundred Plus EIP Plus prior 240626 password recovery

Inserito da Angelo Barbosa | Nov 10, 2025 | CVE

A vulnerability described as problematic has been identified in Hundred Plus EIP Plus. This affects an unknown function. Such manipulation leads to weak password recovery.

This vulnerability is listed as CVE-2025-12866. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is recommended.

CVE-2025-12866 | Hundred Plus EIP Plus prior 240626 password recovery

Post correlati

CVE-2024-48889 | Fortinet FortiManager up to 6.4.14/7.0.12/7.2.7/7.4.4/7.6.0 FGFM Request os command injection (FG-IR-24-425)

CVE-2025-12622 | Tenda AC10 16.03.10.13 /goform/SysRunCmd formSysRunCmd getui buffer overflow

CVE-2024-40754 | Samsung Escargot 4.0.0 heap-based overflow

CVE-2024-10898 | krishaweb Contact Form 7 Email Add On Plugin up to 1.9 on WordPress cf7_email_add_on_add_admin_template filename control