CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ec-Cube: >> Ec-Cube >> 4.2.3 Security Vulnerabilities

CVE-2026-30777

EC-CUBE provided by EC-CUBE CO.,LTD. contains a multi-factor authentication (MFA) bypass vulnerability. An attacker who has obtained a valid administrator ID and password may be able to bypass two-factor authentication and gain unauthorized access to the administrative page.

CVSS Score

6.9

EPSS Score

0.001

Published

2026-03-05

Page 1

Vulnerabilities

Vulnerable Software

Ec-Cube: >> Ec-Cube >> 4.2.3 Security Vulnerabilities

Products

Pricing

Contact Us