CVE-2025-4430 Unauthorized file manipulation in EZD RP

Unauthorized access to "/api/Token/gettoken" endpoint in EZD RP allows file manipulation.This issue affects EZD RP in versions before 20.19 published on 22nd August 2024...

CVE-2025-4430

CVE-2025-4430 describes an unauthorized access vulnerability in EZD RP where the endpoint /api/Token/gettoken can be exploited to manipulate files. The issue affects EZD RP versions before 20.19 (published 22 Aug 2024). Based on connected documents, the root cause is an access control/endpoint ex...