CVE-2025-70093 | OpenSourcePOS 3.4.1 AJAX privilege escalation

Inserito da Angelo Barbosa | Feb 13, 2026 | CVE

A vulnerability was found in OpenSourcePOS 3.4.1 and classified as problematic. Affected is an unknown function of the component AJAX Handler. Executing a manipulation can lead to privilege escalation.

This vulnerability is handled as CVE-2025-70093. The attack can only be done within the local network. There is not any exploit available.

It is advisable to implement a patch to correct this issue.

CVE-2025-70093 | OpenSourcePOS 3.4.1 AJAX privilege escalation

Post correlati

CVE-2022-49262 | Linux Kernel up to 5.15.32/5.16.18/5.17.1 octeontx2 CONFIG_DM_CRYPT null pointer dereference

CVE-2024-43778 | Takenaka HDVR-400 os command injection

CVE-2025-13834 | Xiaomi Mi Redmi Buds RFCOMM TEST Command length out-of-bounds

CVE-2024-24780 | Apache IoTDB up to 1.3.3 URI privilege escalation