CVE-2025-4866 | weibocom rill-flow 0.1.18 Management Console code injection (Issue 102)

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability was found in weibocom rill-flow 0.1.18. It has been classified as critical. Affected is an unknown function of the component Management Console. The manipulation leads to code injection.

This vulnerability is traded as CVE-2025-4866. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

It is recommended to apply the suggested workaround.

CVE-2025-4866 | weibocom rill-flow 0.1.18 Management Console code injection (Issue 102)

Post correlati

CVE-2024-38643 | QNAP Notes Station up to 3.9.6 missing authentication (qsa-24-36)

CVE-2024-22719 | Form Tools 3.1.1 keyword sql injection

CVE-2024-56372 | Linux Kernel up to 6.6.67/6.12.6 net/core/skbuff.c tun_napi_alloc_frags denial of service

CVE-2024-1552 | Mozilla Firefox up to 122 on 32-bit ARM Remote Code Execution