CVE-2025-9310

Name of the Vulnerable Software and Affected Versions: yeqifu carRental up to 3fabb7eae93d209426638863980301d6f99866b3

Description: A vulnerability exists in yeqifu carRental related to an unknown functionality within the /carRental war/druid/login.html file of the Druid component. This allows for the potential exposure of hard-coded credentials. The attack can be launched remotely, and the exploit has been publicly disclosed. The product operates on a rolling release basis, meaning there are no specific version details for affected or updated releases.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.