CVE-2025-68619 | SignalK Server up to 2.18.x REST API Endpoint code injection (GHSA-93jc-vqqc-vvvh)

Inserito da Angelo Barbosa | Gen 1, 2026 | CVE

A vulnerability labeled as critical has been found in SignalK Server up to 2.18.x. This impacts an unknown function of the component REST API Endpoint. Executing manipulation can lead to code injection.

This vulnerability is registered as CVE-2025-68619. It is possible to launch the attack remotely. No exploit is available.

The affected component should be upgraded.

CVE-2025-68619 | SignalK Server up to 2.18.x REST API Endpoint code injection (GHSA-93jc-vqqc-vvvh)

Post correlati

CVE-2024-5191 | Branda Plugin up to 3.4.17 on WordPress SVG Upload cross site scripting

CVE-2022-40700 | CSS Adder Plugin on WordPress server-side request forgery

CVE-2024-56635 | Linux Kernel up to 6.6.65/6.12.4 default_operstate use after free

CVE-2025-62716 | makeplane up to 1.0.x next_path cross site scripting (GHSA-6fj7-xgpg-mj6f)