Privilege Escalation in Beamsec PhishPro

July 28, 2025 invoker category_cve

CVE Details

Basic Information

Title Privilege Escalation in Beamsec PhishPro
Type cve
Published 2025-07-28T11:25:44.208Z
Modified 2025-07-28T11:42:34.327Z

Product Information

Vendor Beamsec
Product PhishPro
Version 0

CVSS Information

Base Score 8.8 (HIGH)
Attack Vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Analysis

AI Description A privilege escalation vulnerability in Beamsec PhishPro allows attackers to abuse privileged APIs, potentially leading to unauthorized access and actions within the system. This issue affects versions before 7.5.4.2.
AI Severity Critical
AI Vendor Beamsec
AI Product PhishPro
AI Version before 7.5.4.2

Affected Products

  • Beamsec PhishPro 0

Additional Information

CWE List CWE-648
Source TR-CERT

Description

Incorrect Use of Privileged APIs vulnerability in Beamsec PhishPro allows Privilege Abuse. This issue affects PhishPro: before 7.5.4.2.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.