VYPR
Medium severity4.3NVD Advisory· Published Sep 8, 2025· Updated Apr 29, 2026

CVE-2025-10084

CVE-2025-10084

Description

A vulnerability was identified in elunez eladmin up to 2.7. This affects the function queryErrorLogDetail of the file /api/logs/error/1 of the component SysLogController. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit is publicly available and might be used.

Affected products

2
  • Eladmin/Eladmin2 versions
    cpe:2.3:a:eladmin:eladmin:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:eladmin:eladmin:*:*:*:*:*:*:*:*range: <=2.7
    • (no CPE)range: <=2.7

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.