CVE-2025-58582

Name of the Vulnerable Software and Affected Versions Affected versions not specified

Description The system logs data from POST requests without validation. Specifically, when a user attempts to log in with incorrect credentials, the request data is logged. It is possible to send excessively large payloads in these requests, potentially impacting the system. The affected API endpoint is a login endpoint receiving POST requests. The vulnerable parameters include the data sent within the POST request, such as username and password.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.