CVE-2025-4754 – Ash-Project Phoenix Session Hijacking

June 17, 2025

CVE ID : CVE-2025-4754

Published : June 17, 2025, 3:15 p.m. | 3 hours, 11 minutes ago

Description : Insufficient Session Expiration vulnerability in ash-project ash_authentication_phoenix allows Session Hijacking. This vulnerability is associated with program files lib/ash_authentication_phoenix/controller.ex.

This issue affects ash_authentication_phoenix until 2.10.0.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6196 – Libgepub EPUB File Processing Memory Corruption

Next Article CVE-2025-49875 – IfSo Dynamic Content Personalization Cross-site Scripting (XSS)

Agent Mode for Gemini added to Android Studio

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

Vite 7.0 Is Out

Vite 7.0 Is Out

Exploring JavaScript ES2025 Edition

Mastering Mixed DML Operations in Apex

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

CVE-2025-4754 – Ash-Project Phoenix Session Hijacking

Critical Kibana Flaws: CVE-2025-2135 (CVSS 9.9) Allows Heap Corruption & RCE; Open Redirect Also Patched

CVE-2025-0966 – IBM InfoSphere Information Server SQL Injection Vulnerability

CVE-2025-4205 – WordPress Popup Maker Stored Cross-Site Scripting Vulnerability

CVE-2025-31259 – Apple macOS Sequoia Privilege Escalation Vulnerability

How General-Purpose AI (GPAI) Models Are Regulated

5 projects Perplexity’s new Labs AI tool can whip up for you now – in minutes

All 8 Elden Ring Nightreign Nightlord bosses, ranked

CVE-2025-46737 – Cisco SEL Cross-Origin Resource Sharing (CORS) Vulnerability

An Animated Introduction to SQL – Learn to Query Relational Databases

CVE-2025-4555 – Okcat Parking Management Platform ZONG YU Authentication Bypass Vulnerability

CVE-2025-4754 – Ash-Project Phoenix Session Hijacking

Related Posts