Jedar for Digital Rights

In a significant development for digital security, researchers have uncovered a severe vulnerability in Softaculous Webuzo, identified as CVE-2024-24621. This flaw permits remote attackers, even working anonymously, to bypass authentication via the system’s password reset function—potentially giving them complete control over a server as its root user. The ramifications of this security breach are extensive and demand immediate action from users and system administrators alike.