CVE-2025-70841

CRITICAL

10.0

Descripcion

Dokans Multi-Tenancy Based eCommerce Platform SaaS 3.9.2 allows unauthenticated remote attackers to obtain sensitive application configuration data via direct request to /script/.env file. The exposed file contains Laravel application encryption key (APP_KEY), database credentials, SMTP/SendGrid API credentials, and internal configuration parameters, enabling complete system compromise including authentication bypass via session token forgery, direct database access to all tenant data, and email infrastructure takeover. Due to the multi-tenancy architecture, this vulnerability affects all tenants in the system.

Detalles CVE

Puntuacion CVSS v3.110.0

SeveridadCRITICAL

Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

Vector de ataqueNETWORK

ComplejidadLOW

Privilegios requeridosNONE

Interaccion usuarioNONE

Publicado2/3/2026

Ultima modificacion2/11/2026

Fuentenvd

Avistamientos honeypot0

Productos afectados

amcoders:dokans

Debilidades (CWE)

CWE-287

Referencias

https://codecanyon.net/item/dokans-multitenancy-based-ecommerce-platform-saas/31122915(cve@mitre.org)

https://github.com/cod3rLucas/security-advisories/blob/main/CVE-2025-70841.md(cve@mitre.org)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.