CVE-2025-15586

CVSS v4.0

Critical

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Name of the Vulnerable Software and Affected Versions OpenGamePanel versions prior to git commit 52f865a4fba763594453068acf8fa9e3fc38d663

Description A type juggling flaw exists in OpenGamePanel. Exploitation of this flaw can lead to authentication bypass without requiring knowledge of the victim’s account password. The issue stems from weak PHP comparisons.

Recommendations Update to a version beyond git commit 52f865a4fba763594453068acf8fa9e3fc38d663.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2025-15586

Affected Products

Opengamepanel

CVE-2025-15586

Weakness Enumeration

Related Identifiers

Affected Products

References · 8