CVE-2026-2895

A security flaw has been discovered in funadmin up to 7.1.0-rc4. Affected by this issue is the function repass of the file app/frontend/controller/Member.php. Performing a manipulation of the argument forget_code/vercode results in weak password recovery. Remote exploitation of the attack is possible. The attack's complexity is rated as high. The exploitation is known to be difficult. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS v3 3.7 LOW
CVSS v2.0 2.6 LOW

3.7^/10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

2.6^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:N/C:N/I:P/A:N

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
https://github.com/I4m6da/CVE/issues/2	Exploit Issue Tracking
https://github.com/I4m6da/CVE/issues/2#issue-3884919985	Exploit Issue Tracking
https://vuldb.com/?ctiid.347206	Permissions Required VDB Entry
https://vuldb.com/?id.347206	Third Party Advisory VDB Entry
https://vuldb.com/?submit.753971	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:funadmin:funadmin::::::::
	cpe:2.3:a:funadmin:funadmin:7.1.0:rc1::::::
	cpe:2.3:a:funadmin:funadmin:7.1.0:rc2::::::
	cpe:2.3:a:funadmin:funadmin:7.1.0:rc3::::::
	cpe:2.3:a:funadmin:funadmin:7.1.0:rc4::::::

History

24 Feb 2026, 16:42

Type	Values Removed	Values Added
First Time		Funadmin Funadmin funadmin
Summary		(es) Se ha descubierto una falla de seguridad en funadmin hasta 7.1.0-rc4. La cual afecta a la función repass del archivo app/frontend/controller/Member.PHP. Manipular el argumento forget_code/vercode provoca una recuperación de contraseña débil. Es posible explotar el ataque en remoto. El ataque está calificado de complejidad alta y se sabe que es difícil de explotar. El exploit ha sido publicado y puede ser utilizado para ataques. El proveedor fue contactado con antelación sobre esta divulgación pero no respondió de ninguna manera.
References	~~() https://github.com/I4m6da/CVE/issues/2 -~~	() https://github.com/I4m6da/CVE/issues/2 - Exploit, Issue Tracking
References	~~() https://github.com/I4m6da/CVE/issues/2#issue-3884919985 -~~	() https://github.com/I4m6da/CVE/issues/2#issue-3884919985 - Exploit, Issue Tracking
References	~~() https://vuldb.com/?ctiid.347206 -~~	() https://vuldb.com/?ctiid.347206 - Permissions Required, VDB Entry
References	~~() https://vuldb.com/?id.347206 -~~	() https://vuldb.com/?id.347206 - Third Party Advisory, VDB Entry
References	~~() https://vuldb.com/?submit.753971 -~~	() https://vuldb.com/?submit.753971 - Third Party Advisory, VDB Entry
CPE		cpe:2.3:a:funadmin:funadmin:7.1.0:rc3:::::: cpe:2.3:a:funadmin:funadmin:7.1.0:rc1:::::: cpe:2.3:a:funadmin:funadmin:::::::: cpe:2.3:a:funadmin:funadmin:7.1.0:rc2:::::: cpe:2.3:a:funadmin:funadmin:7.1.0:rc4::::::

21 Feb 2026, 23:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-02-21 23:15

Updated : 2026-02-24 16:42

NVD link : CVE-2026-2895

Mitre link : CVE-2026-2895

CVE.ORG link : CVE-2026-2895

JSON object : View

Products Affected

funadmin

funadmin

CWE

CWE-640

Weak Password Recovery Mechanism for Forgotten Password

3.7 /10

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

2.6 /10

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

JSON object

Attach tags to CVE-2026-2895

3.7^/10

2.6^/10

Attach tags to `CVE-2026-2895`