5 matches found
CVE-2025-27422
FACTION is a PenTesting Report Generation and Collaboration Framework. Authentication is bypassed when an attacker registers a new user with admin privileges. This is possible at any time without any authorization. The request must follow the validation rules no missing information, secure...
CVE-2025-27422 FACTION Allows Authentication Bypass via User Creation
FACTION is a PenTesting Report Generation and Collaboration Framework. Authentication is bypassed when an attacker registers a new user with admin privileges. This is possible at any time without any authorization. The request must follow the validation rules no missing information, secure...
CVE-2025-27422 FACTION Allows Authentication Bypass via User Creation
FACTION is a PenTesting Report Generation and Collaboration Framework. Authentication is bypassed when an attacker registers a new user with admin privileges. This is possible at any time without any authorization. The request must follow the validation rules no missing information, secure...
CVE-2025-27422 FACTION Allows Authentication Bypass via User Creation
FACTION is a PenTesting Report Generation and Collaboration Framework. Authentication is bypassed when an attacker registers a new user with admin privileges. This is possible at any time without any authorization. The request must follow the validation rules no missing information, secure...
CVE-2025-27422
FACTION is a PenTesting Report Generation and Collaboration Framework. CVE-2025-27422 describes an authentication bypass: an attacker can register a new user with admin privileges, bypassing normal authorization. This vulnerability is present at any time and arises from insufficient controls arou...