CVE-2025-49618 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

In Plesk Obsidian 18.0.69, unauthenticated requests to /login_up.php can reveal an AWS accessKeyId, secretAccessKey, region, and endpoint.

Medium CVSS: 5.8

CVE-2025-49618

In Plesk Obsidian 18.0.69, unauthenticated requests to /login_up.php can reveal an AWS accessKeyId, secretAccessKey, region, and endpoint.

Vendor

-

Product

-

CWE

Yayın Tarihi

2025-07-03 13:15:28

Güncelleme

2025-07-03 15:13:53

Source Identifier

cve@mitre.org

KEV Date Added

-

Kategoriler

CWE-402 MEDIUM 2025

Referanslar

https://www.linkedin.com/posts/gaetano-cesano-976420200_qualche-giorno-fa-stavo-testando-plesk-obsidian-activity-7341794923198709761-by9G https://www.plesk.com/blog/plesk-news-announcements/plesk-obsidian-18-0-69-is-here/