CVE ID : CVE-2025-52289
Published : July 31, 2025, 3:15 p.m. | 8 hours, 9 minutes ago
Description : A Broken Access Control vulnerability in MagnusBilling v7.8.5.3 allows newly registered users to gain escalated privileges by sending a crafted request to /mbilling/index.php/user/save to set their account status fom “pending” to “active” without requiring administrator approval.
Severity: 8.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
Source: Read More
