CVE-2025-10776
BaseFortify
Publication date: 2025-09-22
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| lioncoders | salepro_pos | 5.5.0 |
| lioncoders | salepro_pos | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-310 | Cryptographic Issues |
| CWE-319 | The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-10776 is a vulnerability in LionCoders SalePro POS version 5.5.0 where user login credentials are transmitted in cleartext over an unencrypted HTTP connection. This means that when users log in, their sensitive information like usernames and passwords are sent without encryption, allowing attackers who can intercept the network traffic (man-in-the-middle attackers) to capture these credentials. The vulnerability is due to the application not enforcing HTTPS for login operations. [1]
How can this vulnerability impact me? :
This vulnerability can lead to credential theft because attackers intercepting the network traffic can capture usernames and passwords sent in cleartext. This unauthorized access can compromise user accounts and potentially allow attackers to misuse the system or access sensitive data. Since the attack can be initiated remotely, it poses a significant risk especially on unsecured networks. [1]
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability negatively impacts compliance with standards like GDPR and HIPAA because it involves the transmission of sensitive personal information (user credentials) without adequate protection (encryption). Such exposure violates requirements for protecting personal data in transit, potentially leading to non-compliance, legal penalties, and loss of trust. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by monitoring network traffic for unencrypted HTTP transmissions containing login credentials. For example, using network packet capture tools like tcpdump or Wireshark, you can filter HTTP POST requests to the login endpoint and check if credentials are sent in cleartext. A sample tcpdump command to capture such traffic could be: tcpdump -A -s 0 'tcp port 80 and (((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)' and then inspecting the payload for login data such as username and password sent over HTTP. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include enforcing HTTPS for all login and authentication-related traffic to prevent credentials from being transmitted in cleartext. This can be done by configuring the SalePro POS server to use TLS/SSL and redirecting all HTTP login requests to HTTPS. Additionally, monitoring and restricting network access to the vulnerable service and educating users about the risk of using unsecured connections can help reduce exposure until a patch or update is available. [1]