Dradis, a widely used documentation tool among penetration testers for creating and managing penetration testing reports, is vulnerable to an issue that allows an authenticated user to trigger a Net-NTLM authentication request from fellow users, if they visit a prepared issue/evidence in a Dradis project. This vulnerability could potentially impact any internal web application where […]
Monthly Archives: July 2025
03
Jul
Jul
CVE-2023-50458 is an information disclosure vulnerability identified in Dradis Pro and Dradis Community editions. Dradis, a widely used documentation tool among penetration testers for creating and managing penetration testing reports, was affected by this vulnerability. The issue was resolved in version 4.11.0.