CVE-2025-64420 | coollabsio coolify up to 4.0.0-beta.434 insufficiently protected credentials (GHSA-qwxj-qch7-whpc)

Inserito da Angelo Barbosa | Gen 6, 2026 | CVE

A vulnerability marked as very critical has been reported in coollabsio coolify up to 4.0.0-beta.434. The affected element is an unknown function. Performing a manipulation results in insufficiently protected credentials.

This vulnerability is cataloged as CVE-2025-64420. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-64420 | coollabsio coolify up to 4.0.0-beta.434 insufficiently protected credentials (GHSA-qwxj-qch7-whpc)

Post correlati

CVE-2025-48784 | Soar Cloud System HRD Human Resource Management System up to 7.3.2025.0408 Setting authorization

CVE-2024-2640 | Watu Quiz Plugin up to 3.4.1.1 on WordPress Setting cross site scripting

CVE-2024-42778 | Kashipara Music Management System 1.0 ajax.php unrestricted upload

CVE-2024-47634 | Streamline CartBounty Plugin up to 8.2 on WordPress cross-site request forgery