CVE-2025-26201

Credential disclosure vulnerability via the /staff route in GreaterWMS = 2.1.49 allows a remote unauthenticated attackers to bypass authentication and escalate privileges...

CVE-2025-26201

Credential disclosure vulnerability via the /staff route in GreaterWMS = 2.1.49 allows a remote unauthenticated attackers to bypass authentication and escalate privileges...

CVE-2025-26201

Credential disclosure vulnerability via the /staff route in GreaterWMS = 2.1.49 allows a remote unauthenticated attackers to bypass authentication and escalate privileges...

CVE-2025-26201

CVE-2025-26201 affects GreaterWMS versions ≤ 2.1.49. The issue is a credential disclosure via the "/staff" route that allows remote unauthenticated attackers to bypass authentication and escalate privileges. Documented impact: high confidentiality and integrity concerns, no availability impact. E...

CVE-2025-26201

Credential disclosure vulnerability via the /staff route in GreaterWMS = 2.1.49 allows a remote unauthenticated attackers to bypass authentication and escalate privileges...

PT-2025-7775 · Unknown · Greaterwms

Name of the Vulnerable Software and Affected Versions: GreaterWMS versions = 2.1.49 Description: The issue is a credential disclosure vulnerability via the "/staff" route, allowing remote unauthenticated attackers to bypass authentication and escalate privileges. Recommendations: For GreaterWMS...

GreaterWMS 安全漏洞

GreaterWMS is an inventory management system from GreaterWMS open source. A security vulnerability exists in GreaterWMS version 2.1.49 and prior versions that stems from /staff routing not being handled correctly, allowing an unauthenticated attacker to bypass authentication and elevate privilege...