Vulnerability CVE-2023-25264
Published: 2023-02-28

Description:
An issue was discovered in Docmosis Tornado prior to version 2.9.5. An unauthenticated attacker can bypass the authentication check filter completely by introducing a specially crafted request with relative path segments.

 References:
https://frycos.github.io/vulns4free/2023/01/24/0days-united-nations.html
https://resources.docmosis.com/content/documentation/tornado-v2-9-5-release-notes
Copyright 2026, cxsecurity.com

 

Back to Top