CVE-2025-48027

Published May 15th, 2025

View on NVD ↗

CVSS v3

5.4

MEDIUM

CVSS v2

N/A

Affected

2

PROJECTS

Description

The HttpAuth plugin in pGina.Fork through 3.9.9.12 allows authentication bypass when an adversary controls DNS resolution for pginaloginserver.

A repository containing exploit code / zero-day research I've worked on.

GitHub

2

MutonUfoAI/pgina

pGina fork: Open Source Windows Authentication

GitHub

163