CVE-2025-34087 | Pi-hole Web up to 3.3 AdminLTE Interface domain os command injection

Inserito da Angelo Barbosa | Lug 3, 2025 | CVE

A vulnerability was found in Pi-hole Web up to 3.3 and classified as critical. This issue affects some unknown processing of the component AdminLTE Interface. The manipulation of the argument domain leads to os command injection.

The identification of this vulnerability is CVE-2025-34087. The attack may be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-34087 | Pi-hole Web up to 3.3 AdminLTE Interface domain os command injection

Post correlati

CVE-2024-10395 | zephyrproject-rtos Zephyr up to 3.7 http_server_get_content_type_from_extension buffer under-read (GHSA-hfww-j92m-x8fv)

CVE-2023-44302 | Dell PowerProtect Data Manager DM5500 Appliance up to 5.14 improper authentication (dsa-2023-425)

CVE-2023-47530 | WPVibes Redirect 404 Error Page to Homepage or Custom Page with Logs Plugin sql injection

CVE-2024-5458 | PHP up to 8.1.28/8.2.19/8.3.7 URL Filter filter_var input validation