CVE-2025-9401
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-08-25

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability has been found in HuangDou UTCMS 9. This vulnerability affects unknown code of the file app/modules/ut-frame/admin/login.php of the component Login. Such manipulation of the argument code leads to incorrect comparison. The attack can be executed remotely. The attack requires a high level of complexity. It is stated that the exploitability is difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-08-25
Last Modified
2026-04-29
Generated
2026-06-16
AI Q&A
2025-08-25
EPSS Evaluated
2026-06-15
NVD
CVE-2025-9401
EUVD
EUVD-2025-28846
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
utcms_project utcms 9.0
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-697 The product compares two entities in a security-relevant context, but the comparison is incorrect.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in HuangDou UTCMS version 9's backend login page, specifically in the verification code validation process. The issue arises because the code uses a loose comparison operator (==) to compare the user-submitted verification code against the stored session value. Due to PHP's type juggling, an empty verification code can bypass the check when the stored session value is null, effectively allowing attackers to circumvent the verification mechanism. This flaw enables unrestricted dictionary or brute force attacks on backend user accounts by invalidating the intended verification code protection. [1, 2]

Impact Analysis

This vulnerability can impact you by allowing remote attackers to bypass the login verification code without authentication, enabling them to perform brute force or dictionary attacks on backend user accounts. This compromises the confidentiality of the system by potentially exposing sensitive backend access. Although the exploitability is considered difficult, a proof-of-concept exploit is publicly available, and no vendor mitigation exists, increasing the risk of unauthorized access. [1, 2]

Detection Guidance

This vulnerability can be detected by checking if your system is running HuangDou UTCMS version 9 and if the vulnerable login page exists at the path app/modules/ut-frame/admin/login.php. You can use Google dorking with the query `inurl:app/modules/ut-frame/admin/login.php` to locate vulnerable targets. On your system, you can verify the presence of the vulnerable file and inspect the login code for the improper comparison logic involving the verification code. Network detection could involve monitoring for attempts to access the vulnerable login URL or unusual login attempts bypassing verification codes. Specific commands to locate the file on a server could be: `find / -path '*app/modules/ut-frame/admin/login.php'` or using curl/wget to test the login page remotely. However, no specific detection commands are provided in the resources. [2]

Mitigation Strategies

Immediate mitigation steps include restricting access to the vulnerable login page (e.g., via IP whitelisting or firewall rules) to limit exposure, monitoring login attempts for suspicious activity, and considering replacing or upgrading the affected HuangDou UTCMS 9 component since no vendor patch or fix is available. Applying web application firewall (WAF) rules to block exploitation attempts and disabling the vulnerable login functionality if possible are also recommended. Since the vendor has not provided any countermeasures, these defensive measures are the best immediate actions. [2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-9401. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart