CVE-2018-25224 | PMS 0.42 Configuration File missing authentication (Exploit 44426 / EUVD-2018-21706)

Inserito da Angelo Barbosa | Mar 28, 2026 | CVE

A vulnerability marked as critical has been reported in PMS 0.42. This impacts an unknown function of the component Configuration File Handler. Performing a manipulation results in missing authentication.

This vulnerability is cataloged as CVE-2018-25224. The attack must be initiated from a local position. Furthermore, there is an exploit available.

CVE-2018-25224 | PMS 0.42 Configuration File missing authentication (Exploit 44426 / EUVD-2018-21706)

Post correlati

CVE-2024-0529 | CXBSoft Post-Office up to 1.0 HTTP POST Request /apps/login_auth.php username_login sql injection

CVE-2024-28761 | IBM App Connect Enterprise up to 11.0.0.25/12.0.12.0 cross site scripting (XFDB-285245)

CVE-2023-50840 | wpdevelop Booking Manager Plugin up to 2.1.5 on WordPress sql injection

CVE-2025-36105 | IBM Planning Analytics Advanced Certified Containers up to 3.1.4 Environment Variable exposure of sensitive information through environmental variables