3 matches found
CVE-2025-64124
CVE-2025-64124 is an OS command injection in Nuvation Energy Multi-Stack Controller (MSC). Multiple connected sources (NVD, Red Hat advisories, CIRCL) confirm the issue affects MSC versions prior to 2.5.1 due to improper neutralization of special elements used in OS commands. The vulnerability ex...
Meshtastic device firmware 数据伪造问题漏洞
Meshtastic device firmware is a Meshtastic open source firmware for Meshtastic devices running open source, off-grid, decentralized mesh networks. A data forgery vulnerability exists in Meshtastic versions prior to 2.5.1, which stems from the remote hardware module not checking if a received remo...
PT-2019-13436 · Impress · Give
Name of the Vulnerable Software and Affected Versions: Impress GiveWP Give plugin versions prior to 2.5.1 Description: A SQL injection issue exists, allowing a remote attacker to execute arbitrary SQL commands on the affected system via the includes/payments/class-payments-query.php file...