No advisories yet.
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Wed, 11 Feb 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-703 | |
| Metrics |
cvssV3_1
|
Wed, 04 Feb 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Wed, 04 Feb 2026 12:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Chetans9
Chetans9 core-php-admin-panel |
|
| Vendors & Products |
Chetans9
Chetans9 core-php-admin-panel |
Tue, 03 Feb 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | chetans9 core-php-admin-panel through commit a94a780d6 contains an authentication bypass vulnerability in includes/auth_validate.php. The application sends an HTTP redirect via header(Location:login.php) when a user is not authenticated but fails to call exit() afterward. This allows remote unauthenticated attackers to access protected pages.customer database. | |
| References |
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-02-11T17:15:39.795Z
Reserved: 2026-01-09T00:00:00.000Z
Link: CVE-2025-70758
Updated: 2026-02-11T17:15:35.475Z
Status : Awaiting Analysis
Published: 2026-02-03T18:16:18.013
Modified: 2026-02-11T18:16:07.033
Link: CVE-2025-70758
No data.
OpenCVE Enrichment
Updated: 2026-02-04T12:17:08Z