CVE-2025-10247 | JEPaaS 7.2.8 Filter doFilterInternal access control

Inserito da Angelo Barbosa | Set 10, 2025 | CVE

A vulnerability was found in JEPaaS 7.2.8. It has been declared as critical. This vulnerability affects the function doFilterInternal of the component Filter Handler. Such manipulation leads to improper access controls.

This vulnerability is documented as CVE-2025-10247. The attack can be executed remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-10247 | JEPaaS 7.2.8 Filter doFilterInternal access control

Post correlati

CVE-2025-0764 | tomdever wpForo Forum Plugin up to 2.4.1 on WordPress update information disclosure

CVE-2024-43135 | Themewinter WPCafe Plugin up to 2.2.28 on WordPress path traversal

CVE-2025-52449 | Salesforce Tableau Server prior 2023.3.19/2024.2.12/2025.1.3 on Windows/Linux Extensible Protocol Service unrestricted upload

CVE-2024-35305 | Artica Pandora FMS up to 776 Header Authorization sql injection