CVE-2025-70997

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

04/02/2026

Last modified:

04/02/2026

Description

A vulnerability has been discovered in eladmin v2.7 and before. This vulnerability allows for an arbitrary user password reset under any user permission level.

Impact

References to Advisories, Solutions, and Tools

https://github.com/elunez/eladmin
https://github.com/fofo137/CVE/issues/1