Plesk
CVE-2025-54336: Plesk Obsidian Authentication Bypass Vulnerability
TLDR; I found an authentication bypass in Plesk Obsidian. the admin password check uses PHP’s loose comparison (==) instead of strict (===). if the admin password looks like scientific notation …