The Baldwin School Ethical Hackers

1 exploit Active since Dec 2025
CVE-2025-66573 EXPLOITDB HIGH text WORKING POC
Solstice Pod API <6.2 - Info Disclosure
Solstice Pod API (version 5.5, 6.2) contains an unauthenticated API endpoint (`/api/config`) that exposes sensitive information such as the session key, server version, product details, and display name. Unauthorized users can extract live session information by accessing this endpoint without authentication.
CVSS 7.5