
CVE-2025-31161: Exploitation of Critical Authentication Bypass Vulnerability in CrushFTP
On March 21, 2025, CrushFTP privately alerted customers to a critical authentication bypass vulnerability, now tracked as CVE-2025-31161. Since the initial disclosure, a proof-of-concept (PoC)