CVE-2025-28232: Incorrect access control in the HOME.php endpoint of JMBroadcast JMB0150 Firmware v1.0 allows attackers to access the Admin panel without...

Description

Incorrect access control in the HOME.php endpoint of JMBroadcast JMB0150 Firmware v1.0 allows attackers to access the Admin panel without authentication.

Classification

CVE ID: CVE-2025-28232

Affected Products

Vendor: n/a

Product: n/a

References

https://nvd.nist.gov/vuln/detail/CVE-2025-28232
https://github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-28232

Timeline

2025-04-18 15:40:25 UTC
CVE

Incorrect access control in the HOME.php endpoint of JMBroadcast JMB0150 Firmware v1.0 allows attackers to access the Admin panel without...