CVE-2025-14567

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions haxxorsid Stock-Management-System versions prior to fbbbf213e9c93b87183a3891f77e3cc7095f22b0

Description A weakness exists in haxxorsid Stock-Management-System. This issue can lead to missing authentication through manipulation of an unknown function within the /api/employees file. The attack can be launched remotely. The exploit has been publicly released. This affects products that are no longer supported by the maintainer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Missing Authentication

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306CWE-287

Related Identifiers

CVE-2025-14567

Affected Products

Stock Management System

CVE-2025-14567

Weakness Enumeration

Related Identifiers

Affected Products

References · 8