CVE-2025-49008 | Atheos up to 6.0.3 execute.php escapeshellcmd os command injection (GHSA-rwc2-4q8c-xj48)

Inserito da Angelo Barbosa | Giu 5, 2025 | CVE

A vulnerability was found in Atheos up to 6.0.3. It has been rated as critical. This issue affects the function escapeshellcmd of the file /components/codegit/traits/execute.php. The manipulation leads to os command injection.

The identification of this vulnerability is CVE-2025-49008. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-49008 | Atheos up to 6.0.3 execute.php escapeshellcmd os command injection (GHSA-rwc2-4q8c-xj48)

Post correlati

CVE-2025-23837 | One Backend Language Plugin up to 1.0 on WordPress cross site scripting

CVE-2024-31032 | Huashi Private Cloud CDN Live Streaming Acceleration Server manager/ipping.php Privilege Escalation

CVE-2024-6227 | aimhubio aim up to 3.19.3 resource consumption

CVE-2021-47122 | Linux Kernel up to 5.12.9 caif caif_enroll_dev memory leak