{"id":"CVE-2025-2855","details":"A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7. Affected by this issue is the function checkFile of the file /api/deploy/upload. The manipulation of the argument servers leads to deserialization. The attack may be launched remotely.","modified":"2026-03-15T14:52:43.570321Z","published":"2025-03-27T16:15:31.177Z","references":[{"type":"ADVISORY","url":"https://vuldb.com/?id.301502"},{"type":"ADVISORY","url":"https://vuldb.com/?submit.522504"},{"type":"REPORT","url":"https://github.com/elunez/eladmin/issues/873"},{"type":"REPORT","url":"https://vuldb.com/?ctiid.301502"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/elunez/eladmin","events":[{"introduced":"0"},{"last_affected":"39d480938d27a9630d632578c3ef60cf3647a79e"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.7"}]}}],"versions":["v2.7"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-2855.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"}]}