6 matches found
VulnCheck KEV: CVE-2025-53118
An authentication bypass vulnerability exists which allows an unauthenticated attacker to control administrator backup functions, leading to compromise of passwords, secrets, and application session tokens stored by the Unified PAM...
CVE-2025-53118
An authentication bypass vulnerability exists which allows an unauthenticated attacker to control administrator backup functions, leading to compromise of passwords, secrets, and application session tokens stored by the Unified PAM...
CVE-2025-53118
CVE-2025-53118 affects Securden Unified PAM. An unauthenticated attacker can bypass authentication to manipulate administrator backups, risking exposure of passwords, secrets, and session tokens stored by Unified PAM. The issue has been observed in the wild (CIRCL sighting/export data) and was di...
CVE-2025-53118 Securden Unified PAM Authentication Bypass
An authentication bypass vulnerability exists which allows an unauthenticated attacker to control administrator backup functions, leading to compromise of passwords, secrets, and application session tokens stored by the Unified PAM...
Sonic 路径遍历漏洞
Sonic is a high-performance blogging system from go developed using golang. A security vulnerability exists in Sonic v1.0.4, which stems from the component /admin/backups/work-dir that allows an attacker to perform directory traversal...
CVE-2022-46959
An issue in the component /admin/backups/work-dir of Sonic v1.0.4 allows attackers to execute a directory traversal...