3 matches found
CVE-2025-32788 OctoPrint Authenticated Reverse Proxy Page Authentication Bypass
OctoPrint provides a web interface for controlling consumer 3D printers. In versions up to and including 1.10.3, OctoPrint has a vulnerability that allows an attacker to bypass the login redirect and directly access the rendered HTML of certain frontend pages. The primary risk lies in potential...
CVE-2025-32788
CVE-2025-32788 – OctoPrint Up to version 1.10.3, OctoPrint could bypass the login redirect and directly access rendered HTML of certain frontend pages by abusing authentication checks. The issue centers on the frontend authentication flow, notably functions like require_login, require_login_with,...
PYSEC-2024-237
OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.10.0 contain a vulnerability that allows an unauthenticated attacker to completely bypass the authentication if the autologinLocal option is enabled within config.yaml, even if the...