4 matches found
CVE-2025-8530 elunez eladmin Druid application-prod.yml default credentials
A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7. Affected by this issue is some unknown functionality of the file eladmin-system\src\main\resources\config\application-prod.yml of the component Druid. The manipulation of the argument...
CVE-2024-51242
A Server-Side Request Forgery SSRF vulnerability has been identified in eladmin 2.7 and earlier in ServerDeployController.java. The manipulation of the HTTP Body ip parameter leads to SSRF...
CVE-2024-51242
A Server-Side Request Forgery SSRF vulnerability has been identified in eladmin 2.7 and earlier in ServerDeployController.java. The manipulation of the HTTP Body ip parameter leads to SSRF...
CVE-2024-51242
Summary: CVE-2024-51242 affects ELADMIN (eladmin) 2.7 and earlier, with a Server-Side Request Forgery (SSRF) caused by manipulating the HTTP Body parameter named ip in ServerDeployController.java. The vulnerability enables potential unauthorized network access from the affected system, as reflect...