Security Advisory

CVE-2026-30777

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-05 05:31:35
Last updated 2026-03-06 18:19:20
Assigner jpcert
State PUBLISHED

Description

EC-CUBE provided by EC-CUBE CO.,LTD. contains a multi-factor authentication (MFA) bypass vulnerability. An attacker who has obtained a valid administrator ID and password may be able to bypass two-factor authentication and gain unauthorized access to the administrative page.