CVE-2025-41737 – Improper access control via php endpoint

CVE ID : CVE-2025-41737

Published : Nov. 18, 2025, 10:18 a.m. | 46 minutes ago

Description : Due to webserver misconfiguration an unauthenticated remote attacker is able to read the source of php modules.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-39665 – Livestatus Injection in dynmaps

CVE-2025-13947 – Webkit: webkitgtk: remote user-assisted information disclosure via file drag-and-drop

CVE-2025-29864 – ALZip SmartScreen Bypass Vulnerability

CVE-2025-13472 – Missing authorization in BlazeMeter Jenkins Plugin