CVE-2025-2306 | Syncpilot Live Contract up to 5.4.11/5.5.3/5.6.2 access control

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability has been found in Syncpilot Live Contract up to 5.4.11/5.5.3/5.6.2 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to improper access controls.

This vulnerability was named CVE-2025-2306. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-2306 | Syncpilot Live Contract up to 5.4.11/5.5.3/5.6.2 access control

Post correlati

CVE-2024-44205 | Apple macOS log file

CVE-2025-26571 | wibiya Wibiya Toolbar Plugin up to 2.0 on WordPress cross-site request forgery

CVE-2024-43236 | Scott Paterson Easy PayPal Buy Now Button Plugin up to 1.9 on WordPress URL redirect

CVE-2024-1453 | Santesoft Sante DICOM Viewer Pro up to 14.0.3 DICOM File Parser out-of-bounds (icsma-24-058-01)