Main Vulnerability Database Exploits ID:12368 - Exploit for Improper authentication in Web Help Desk - CVE-2025-40554

ID:12368 - Exploit for Improper authentication in Web Help Desk - CVE-2025-40554

Published: February 6, 2026

Vulnerability identifier: #VU122153

Vulnerability risk: Critical

CVE-ID: CVE-2025-40554

CWE-ID: CWE-287

Exploitation vector: Remote access

Vulnerable software:
Web Help Desk

Link to public exploit:

https://github.com/Skynoxk/CVE-2025-40554

Vulnerability description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to an error in the authentication process. A remote non-authenticated attacker can bypass authentication process and gain unauthorized access to the application.

Remediation

Install updates from vendor's website.

ID:12368 - Exploit for Improper authentication in Web Help Desk - CVE-2025-40554

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human