CVE-2025-10776
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-22

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability was detected in LionCoders SalePro POS up to 5.5.0. This issue affects some unknown processing of the component Login. Performing manipulation results in cleartext transmission of sensitive information. The attack can be initiated remotely. The attack is considered to have high complexity. The exploitability is assessed as difficult. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-22
Last Modified
2026-04-29
Generated
2026-06-16
AI Q&A
2025-09-22
EPSS Evaluated
2026-06-15
NVD
CVE-2025-10776
EUVD
EUVD-2025-30389
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
lioncoders salepro_pos 5.5.0
lioncoders salepro_pos *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-310 Cryptographic Issues
CWE-319 The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-10776 is a vulnerability in LionCoders SalePro POS version 5.5.0 where user login credentials are transmitted in cleartext over an unencrypted HTTP connection. This means that when users log in, their sensitive information like usernames and passwords are sent without encryption, allowing attackers who can intercept the network traffic (man-in-the-middle attackers) to capture these credentials. The vulnerability is due to the application not enforcing HTTPS for login operations. [1]

Impact Analysis

This vulnerability can lead to credential theft because attackers intercepting the network traffic can capture usernames and passwords sent in cleartext. This unauthorized access can compromise user accounts and potentially allow attackers to misuse the system or access sensitive data. Since the attack can be initiated remotely, it poses a significant risk especially on unsecured networks. [1]

Compliance Impact

This vulnerability negatively impacts compliance with standards like GDPR and HIPAA because it involves the transmission of sensitive personal information (user credentials) without adequate protection (encryption). Such exposure violates requirements for protecting personal data in transit, potentially leading to non-compliance, legal penalties, and loss of trust. [1]

Detection Guidance

This vulnerability can be detected by monitoring network traffic for unencrypted HTTP transmissions containing login credentials. For example, using network packet capture tools like tcpdump or Wireshark, you can filter HTTP POST requests to the login endpoint and check if credentials are sent in cleartext. A sample tcpdump command to capture such traffic could be: tcpdump -A -s 0 'tcp port 80 and (((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)' and then inspecting the payload for login data such as username and password sent over HTTP. [1]

Mitigation Strategies

Immediate mitigation steps include enforcing HTTPS for all login and authentication-related traffic to prevent credentials from being transmitted in cleartext. This can be done by configuring the SalePro POS server to use TLS/SSL and redirecting all HTTP login requests to HTTPS. Additionally, monitoring and restricting network access to the vulnerable service and educating users about the risk of using unsecured connections can help reduce exposure until a patch or update is available. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-10776. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart