CNNVD-202508-2357 Information

CNNVD ID

CNNVD-202508-2357

Related CVE

CVE-2025-9240

• CNNVD Published: 2025-08-20

Description (Chinese)

ELADMIN是elunez个人开发者的一个后台管理系统。 ELADMIN 2.7及之前版本存在安全漏洞，该漏洞源于/auth/info文件未对访问进行充分鉴权，导致可被远程攻击者利用而造成信息泄露。

Description (English)

ELADMIN is a back-office management system for the personal developers of Elunez. ELADMIN 2.7 and earlier versions contained a security loophole, which stemmed from the failure of the /auth/info document to provide adequate assurance of access, resulting in the disclosure of information that could be used by remote assailants.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-20

Last Modified

2026-02-24

References

https://vuldb.com/?submit.631424 https://vuldb.com/?id.320773 https://vuldb.com/?ctiid.320773 https://github.com/elunez/eladmin/issues/885#issue-3307153708 https://nvd.nist.gov/vuln/detail/CVE-2025-9240