4 matches found
PT-2025-34073 · Jantent · Jantent
Name of the Vulnerable Software and Affected Versions: Jantent version 1.1 Description: Incorrect access control in Jantent version 1.1 allows attackers to bypass authentication and access sensitive APIs without a token. Recommendations: At the moment, there is no information about a newer versio...
CVE-2025-34073 stamparm/maltrail <=0.54 Remote Command Execution
An unauthenticated command injection vulnerability exists in stamparm/maltrail Maltrail versions =0.54. A remote attacker can execute arbitrary operating system commands via the username parameter in a POST request to the /login endpoint. This occurs due to unsafe handling of user-supplied input...
CVE-2025-34073 stamparm/maltrail <=0.54 Remote Command Execution
An unauthenticated command injection vulnerability exists in stamparm/maltrail Maltrail versions =0.54. A remote attacker can execute arbitrary operating system commands via the username parameter in a POST request to the /login endpoint. This occurs due to unsafe handling of user-supplied input...
CVE-2025-34073
creationtimestamp| type| source ---|---|--- 2023-08-16 22:01:49+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/http/maltrailrce.rb 2025-07-04 21:02:22+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lt65boaqfs2s 2025-08-15...