CVE-2025-7907 | yangzongzhuan RuoYi up to 4.8.1 Druid application-druid.yml default credentials (Issue 297)

SecurityVulns

A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. It has been classified as problematic. Affected is an unknown function of the file ruoyi-admin/src/main/resources/application-druid.yml of the component Druid. The manipulation leads to use of default credentials.

This vulnerability is traded as CVE-2025-7907. It is possible to launch the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More