2 matches found
CVE-2025-10389
creationtimestamp| type| source ---|---|--- 2025-09-14 07:57:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyrsy2cp232c...
CVE-2025-10389 CRMEB Administrator Password SystemAdminServices.php save improper authorization
A security flaw has been discovered in CRMEB up to 5.6.1. Impacted is the function Save of the file app/services/system/admin/SystemAdminServices.php of the component Administrator Password Handler. Performing manipulation of the argument ID results in improper authorization. The attack may be...