CVE-2025-8530 | elunez eladmin up to 2.7 Druid application-prod.yml login-username/login-password default credentials (Issue 883)

Inserito da Angelo Barbosa | Ago 4, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7. Affected by this issue is some unknown functionality of the file eladmin-systemsrcmainresourcesconfigapplication-prod.yml of the component Druid. The manipulation of the argument login-username/login-password leads to use of default credentials.

This vulnerability is handled as CVE-2025-8530. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-8530 | elunez eladmin up to 2.7 Druid application-prod.yml login-username/login-password default credentials (Issue 883)

Post correlati

CVE-2024-1656 | Octopus Server up to 2024.2.2075 Content Security Policy ui layer

CVE-2024-20520 | Cisco RV042/RV042G/RV320/RV325 up to 4.2.3.14 Web-based Management Interface stack-based overflow (cisco-sa-sb-rv04x_rv32x_vulns-yJ2OSDhV)

CVE-2023-47480 | Pure Data 0.54-0 Local Privilege Escalation (ID 2063)

CVE-2025-23098 | Samsung Mobile Processor Exynos up to 2200 use after free