EUVD-2025-27087

Malicious code in bioql PyPI...

CVE-2025-58443 FOG's authentication bypass leads to full SQL DB dump

FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Versions 1.5.10.1673 and below contain an authentication bypass vulnerability. It is possible for an attacker to perform an unauthenticated DB dump where they could pull a full SQL DB without credentials. A fix is...

CVE-2025-58443

Overview: CVE-2025-58443 affects FOGProject in versions ≤ 1.5.10.1673, with an authentication bypass that enables unauthenticated access and a full SQL database dump. What’s affected: Management/UI endpoints (notably /fog/management/export.php and related paths) exposing database contents and pot...

CVE-2025-58443 FOG's authentication bypass leads to full SQL DB dump

FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Versions 1.5.10.1673 and below contain an authentication bypass vulnerability. It is possible for an attacker to perform an unauthenticated DB dump where they could pull a full SQL DB without credentials. A fix is...