CVE-2025-13806 | nutzam NutzBoot up to 2.6.0-SNAPSHOT Transaction API EthModule.java from/to/wei improper authorization

A vulnerability classified as critical has been found in nutzam NutzBoot up to 2.6.0-SNAPSHOT. This impacts an unknown function of the file nutzboot-demo/nutzboot-demo-simple/nutzboot-demo-simple-web3j/src/main/java/io/nutz/demo/simple/module/EthModule.java of the component Transaction API. The manipulation of the argument from/to/wei leads to improper authorization.

This vulnerability is referenced as CVE-2025-13806. Remote exploitation of the attack is possible. Furthermore, an exploit is available.VulDB Recent EntriesRead More