CVE-2025-7897 | harry0703 MoneyPrinterTurbo up to 1.2.6 API Endpoint app/controllers/base.py verify_token missing authentication

Inserito da Angelo Barbosa | Lug 19, 2025 | CVE

A vulnerability was found in harry0703 MoneyPrinterTurbo up to 1.2.6 and classified as critical. Affected by this issue is the function verify_token of the file app/controllers/base.py of the component API Endpoint. The manipulation leads to missing authentication.

This vulnerability is handled as CVE-2025-7897. The attack may be launched remotely. There is no exploit available.

CVE-2025-7897 | harry0703 MoneyPrinterTurbo up to 1.2.6 API Endpoint app/controllers/base.py verify_token missing authentication

Post correlati

CVE-2024-1491 | Electrolink Compact DAB Transmitter SNMP Module missing authentication (icsa-24-107-02)

CVE-2024-40598 | CheckUser Extension up to 1.42.1 on MediaWiki API log_deleted information disclosure

CVE-2024-25760 | YASM 1.3.0 genmacro.c memory leak

CVE-2024-12837 | Imagination Technologies Graphics DDK up to 24.3 RTM GPU System Call use after free