| Title | elunez eladmin <=2.7 Hardcoded DES Key |
|---|
| Description | The EncryptUtils class in eladmin versions up to 2.7 contains hardcoded DES encryption key and initialization vector (IV), resulting in fixed and predictable cryptographic parameters that seriously compromise data security. |
|---|
| Source | ⚠️ https://github.com/elunez/eladmin/issues/884 |
|---|
| User | ez-lbz (UID 87033) |
|---|
| Submission | 08/10/2025 04:05 (6 months ago) |
|---|
| Moderation | 08/20/2025 13:07 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 320772 [elunez eladmin up to 2.7 DES Key EncryptUtils.java EncryptUtils STR_PARAM inadequate encryption] |
|---|
| Points | 16 |
|---|