ГлавнаяУязвимости → CVE-2025-4494
7.3высокая

CVE-2025-4494

Описание

A vulnerability, which was classified as critical, was found in JAdmin-JAVA JAdmin 1.0. Affected is the function toLogin of the file NoNeedLoginController.java of the component Admin Backend. The manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Затрагиваемое ПО
Jadmin-java Jadmin
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/JAdmin-JAVA/JAdmin/issues/1https://github.com/JAdmin-JAVA/JAdmin/issues/1#issue-3012501470https://vuldb.com/?ctiid.308208https://vuldb.com/?id.308208https://vuldb.com/?submit.566984