{"id":63810,"date":"2025-05-28T03:32:00","date_gmt":"2025-05-28T00:02:00","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-32440-netalertx-authentication-bypass-vulnerability\/"},"modified":"2025-05-28T03:32:00","modified_gmt":"2025-05-28T00:02:00","slug":"cve-2025-32440-netalertx-authentication-bypass-vulnerability","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-32440-netalertx-authentication-bypass-vulnerability\/","title":{"rendered":"CVE-2025-32440 &#8211; NetAlertX Authentication Bypass Vulnerability"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-32440<br \/>\n<br \/>\n<strong>Published : <\/strong> May 27, 2025, 10:15 p.m. | 1\u00a0hour, 23\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>NetAlertX is a network, presence scanner and alert framework. Prior to version 25.4.14, it is possible to bypass the authentication mechanism of NetAlertX to update settings without authentication. An attacker can trigger sensitive functions within util.php by sending crafted requests to \/index.php. This issue has been patched in version 25.4.14.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 10.0 | CRITICAL<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-32440 Published : May 27, 2025, 10:15 p.m. | 1\u00a0hour, 23\u00a0minutes ago Description : NetAlertX is a network, presence scanner and alert framework. Prior to version 25.4.14, it is possible to bypass the authentication mechanism of NetAlertX to update settings without authentication. An attacker can trigger sensitive functions within util.php by sending &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-63810","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/63810","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=63810"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/63810\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=63810"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=63810"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=63810"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}