CVE-2025-8530

CVE-2025-8530 affects elunez eladmin up to 2.7, with the Druid component’s configuration file eladmin-system/src/main/resources/config/application-prod.yml where manipulation of login-username/login-password can cause default credentials to be used. This vulnerability can be exploited remotely, a...

CVE-2025-8530 elunez eladmin Druid application-prod.yml default credentials

A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7. Affected by this issue is some unknown functionality of the file eladmin-system\src\main\resources\config\application-prod.yml of the component Druid. The manipulation of the argument...

CVE-2025-7907 yangzongzhuan RuoYi Druid application-druid.yml default credentials

A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. It has been classified as problematic. Affected is an unknown function of the file ruoyi-admin/src/main/resources/application-druid.yml of the component Druid. The manipulation leads to use of default credentials. It is possible to...

CVE-2021-37833

A reflected cross-site scripting XSS vulnerability exists in multiple pages in version 3.0.2 of the Hotel Druid application that allows for arbitrary execution of JavaScript commands...