CVE-2025-49008 | Atheos up to 6.0.3 execute.php escapeshellcmd os command injection (GHSA-rwc2-4q8c-xj48)

Inserito da Angelo Barbosa | Giu 5, 2025 | CVE

A vulnerability was found in Atheos up to 6.0.3. It has been rated as critical. This issue affects the function escapeshellcmd of the file /components/codegit/traits/execute.php. The manipulation leads to os command injection.

The identification of this vulnerability is CVE-2025-49008. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-49008 | Atheos up to 6.0.3 execute.php escapeshellcmd os command injection (GHSA-rwc2-4q8c-xj48)

Post correlati

CVE-2024-9239 | Booster for WooCommerce Plugin up to 7.2.3 on WordPress cross site scripting

CVE-2024-7370 | SourceCodester Simple Realtime Quiz System 1.0 /manage_quiz.php id sql injection

CVE-2025-41429 | Appleple A-Blog CMS neutralization for logs

CVE-2025-47697 | Uchida Yoko wivia 5 client-side enforcement of server-side security