Skip to main content
Link
Menu
Expand
(external link)
Document
Search
Copy
Copied
EntryPoint Research
Home
Auth Bypass
SSRF
Pre-Auth RCE
(0-Click) CVE-2025-62713
(1-Click) CVE-2025-66509
Security Advisory
CVE-2025-66509,
LaraDashboard ≤2.3.0: 1-Click Pre-Auth RCE via Host Header + Module Installation Chain
CVE-2025-62713,
Kottster app reinitialization can be re-triggered allowing command injection in development mode