CVE-2025-26911Exposure of Sensitive System Information to an Unauthorized Control Sphere in System Dashboard

CWE-497Exposure of Sensitive System Information to an Unauthorized Control Sphere3 documents3 sources
Severity
N/A
No vector
EPSS
0.1%
top 76.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Bowo System Dashboard
Timeline
PublishedFeb 25

Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Bowo System Dashboard system-dashboard allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects System Dashboard: from n/a through <= 2.8.18.

Affected Packages1 packages

CVEListV5bowo/system_dashboard2.8.18

🔴Vulnerability Details

2
CVEList
WordPress System Dashboard plugin <= 2.8.18 - Sensitive Data Exposure vulnerability2025-02-25
GHSA
GHSA-35rf-2xxr-prvf: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Bowo System Dashboard allows Exploiting Incorrectly Config2025-02-25
CVE-2025-26911 — Bowo System Dashboard vulnerability | cvebase