CVE-2025-49851 – ControlID iDSecure Authentication Bypass

June 24, 2025

CVE ID : CVE-2025-49851

Published : June 24, 2025, 8:15 p.m. | 1 hour, 11 minutes ago

Description : ControlID iDSecure On-premises versions 4.7.48.0 and prior are vulnerable to an Improper Authentication vulnerability which could allow an attacker to bypass authentication and gain permissions in the product.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49852 – ControlID iDSecure Server-Side Request Forgery

Next Article CVE-2025-49853 – ControlID iDSecure SQL Injection Vulnerability

Highlights

CVE-2025-6731 – “yzcheng90 X-SpringBoot Remote Path Traversal Vulnerability”

June 26, 2025

CVE ID : CVE-2025-6731

Published : June 26, 2025, 10:15 p.m. | 3 hours, 19 minutes ago

Description : A vulnerability was found in yzcheng90 X-SpringBoot up to 5.0 and classified as critical. Affected by this issue is the function uploadApk of the file /sys/oss/upload/apk of the component APK File Handler. The manipulation of the argument File leads to path traversal. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

GitHub’s CEO Thomas Dohmke steps down, triggering tighter integration of company within Microsoft

bitHuman launches SDK for creating AI avatars

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

I found a Google Maps alternative that won’t track you or drain your battery – and it’s free

I tested this new AI podcast tool to see if it can beat NotebookLM – here’s how it did

Microsoft’s new update makes your taskbar a productivity hub – here’s how

Save $50 on the OnePlus Pad 3 plus get a free gift – here’s the deal

Laravel Global Scopes: Automatic Query Filtering

Laravel Global Scopes: Automatic Query Filtering

Building MCP Servers in PHP

Filament v4 is Stable!

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

Madden NFL 26 Leads This Week’s Xbox Drops—But Don’t Miss These Hidden Gems

ASUS G14 Bulked Up for 2025—Still Sexy, Just a Bit Chonkier

CVE-2025-49851 – ControlID iDSecure Authentication Bypass

Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability

WinRAR zero-day exploited in espionage attacks against high-value targets

CVE-2025-45890 – Novel Plus Directory Traversal Code Execution Vulnerability

Community News: Latest PECL Releases (05.06.2025)

Laravel API Errors and Exceptions: How to Return Responses

CVE-2025-20286 Credential Reuse Vulnerability in Cisco ISE

CVE-2025-6731 – “yzcheng90 X-SpringBoot Remote Path Traversal Vulnerability”

CVE-2025-31641 – LambertGroup UberSlider SQL Injection

CVE-2025-47102 – Adobe Experience Manager DOM-based Cross-Site Scripting (XSS)

Best Classified Script

CVE-2025-49851 – ControlID iDSecure Authentication Bypass

Related Posts