CVE-2025-54322 | Xspeeder SXZOS up to 2025-12-26 vLogin.py chkid eval injection

Inserito da Angelo Barbosa | Dic 27, 2025 | CVE

A vulnerability identified as critical has been detected in Xspeeder SXZOS up to 2025-12-26. This issue affects some unknown processing of the file vLogin.py. Performing manipulation of the argument chkid results in improper neutralization of directives in dynamically evaluated code.

This vulnerability is cataloged as CVE-2025-54322. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-54322 | Xspeeder SXZOS up to 2025-12-26 vLogin.py chkid eval injection

Post correlati

CVE-2025-26753 | videowhisper VideoWhisper Live Streaming Integration Plugin up to 6.2 on WordPress path traversal

CVE-2024-11122 | 上海灵当信息科技有限公司 Lingdang CRM up to 8.6.4.3 index.php?msgid=1&operation=upload file unrestricted upload

CVE-2024-10964 | emqx neuron up to 2.10.0 plugin_handle.c handle_add_plugin buffer overflow

CVE-2024-26611 | Linux Kernel up to 6.6.14/6.7.2/6.8-rc1 on ZC xsk bpf_xdp_adjust_tail null pointer dereference (82ee4781b820/5cd781f7216f/c5114710c8ce)