Vulnerabilities

CVE-2025-59797

by Fred · 22/09/2025

Profession Fit 5.0.99 Build 44910 allows authorization bypass via a direct request for /api/challenges/{id} and also URLs for eversports, the user-management page, and the plane page.

More information : https://github.com/Henkel-CyberVM/CVEs/blob/main/CVE-2025-59797/README.md

Similar

Tags: Cybersecurity Alert