47 matches found
EUVD-2025-24994
Malicious code in bioql PyPI...
CVE-2025-9016
A vulnerability was identified in Mechrevo Control Center GX V2 5.56.51.48. This affects an unknown part of the file C:\Program Files\OEM\机械革命控制中心\AiStoneService\MyControlCenter\Command of the component Powershell Script Handler. The manipulation leads to uncontrolled search path. Local access is...
CVE-2025-9016
A vulnerability was identified in Mechrevo Control Center GX V2 5.56.51.48. This affects an unknown part of the file C:\Program Files\OEM\机械革命控制中心\AiStoneService\MyControlCenter\Command of the component Powershell Script Handler. The manipulation leads to uncontrolled search path. Local access is...
CVE-2025-9016
A vulnerability was identified in Mechrevo Control Center GX V2 5.56.51.48. This affects an unknown part of the file C:\Program Files\OEM\机械革命控制中心\AiStoneService\MyControlCenter\Command of the component Powershell Script Handler. The manipulation leads to uncontrolled search path. Local access is...
CVE-2025-9016 Mechrevo Control Center GX V2 Powershell Script Command uncontrolled search path
A vulnerability was identified in Mechrevo Control Center GX V2 5.56.51.48. This affects an unknown part of the file C:\Program Files\OEM\机械革命控制中心\AiStoneService\MyControlCenter\Command of the component Powershell Script Handler. The manipulation leads to uncontrolled search path. Local access is...
CVE-2025-9016 Mechrevo Control Center GX V2 Powershell Script Command uncontrolled search path
A vulnerability was identified in Mechrevo Control Center GX V2 5.56.51.48. This affects an unknown part of the file C:\Program Files\OEM\机械革命控制中心\AiStoneService\MyControlCenter\Command of the component Powershell Script Handler. The manipulation leads to uncontrolled search path. Local access is...
CVE-2025-9016
CVE-2025-9016 concerns Mechrevo Control Center GX V2 (version 5.56.51.48). The vulnerability arises in the Powershell Script Handler component, specifically the file path C:\Program Files\OEM\机械革命控制中心\AiStoneService\MyControlCenter\Command, where an uncontrolled search path condition is reported....
Mechrevo Control Center GX V2 安全漏洞
Mechrevo Control Center GX V2 is a system level control software from China-based Mechrevo. A security vulnerability exists in Mechrevo Control Center GX V2 version 5.56.51.48, which originates from an uncontrolled search path in the component Powershell Script Handler...
PT-2025-33449 · Unknown · Mechrevo Control Center Gx V2
Name of the Vulnerable Software and Affected Versions: Mechrevo Control Center GX V2 version 5.56.51.48 Description: A vulnerability was identified that leads to an uncontrolled search path within the Powershell Script Handler component. The vulnerability affects the file C:Program...
CVE-2025-7883
A vulnerability classified as critical has been found in Eluktronics Control Center 5.23.51.41. Affected is an unknown function of the file \AiStoneService\MyControlCenter\Command of the component Powershell Script Handler. The manipulation leads to command injection. Attacking locally is a...
CVE-2025-7883
A vulnerability classified as critical has been found in Eluktronics Control Center 5.23.51.41. Affected is an unknown function of the file \AiStoneService\MyControlCenter\Command of the component Powershell Script Handler. The manipulation leads to command injection. Attacking locally is a...
CVE-2025-7883
A vulnerability classified as critical has been found in Eluktronics Control Center 5.23.51.41. Affected is an unknown function of the file \AiStoneService\MyControlCenter\Command of the component Powershell Script Handler. The manipulation leads to command injection. Attacking locally is a...
CVE-2025-7883 Eluktronics Control Center Powershell Script Command command injection
A vulnerability classified as critical has been found in Eluktronics Control Center 5.23.51.41. Affected is an unknown function of the file \AiStoneService\MyControlCenter\Command of the component Powershell Script Handler. The manipulation leads to command injection. Attacking locally is a...
CVE-2025-7883
CVE-2025-7883 affects Eluktronics Control Center 5.23.51.41. A vulnerability in the Powershell Script Handler’s file path AiStoneService\MyControlCenter\Command enables local command injection. Exploitation requires local access; the exploit has been disclosed publicly. The root cause involves an...
Eluktronics Control Center 注入漏洞
Eluktronics Control Center is a control center software from Eluktronics, USA. An injection vulnerability exists in Eluktronics Control Center version 5.23.51.41, which originates from a command injection in the file AiStoneServiceMyControlCenterCommand in the Powershell Script Handler component...
CVE-2025-5680
A vulnerability classified as critical was found in Shenzhen Dashi Tongzhou Information Technology AgileBPM up to 2.5.0. Affected by this vulnerability is the function executeScript of the file /src/main/java/com/dstz/sys/rest/controller/SysScriptController.java of the component Groovy Script...
CVE-2025-5680
A vulnerability classified as critical was found in Shenzhen Dashi Tongzhou Information Technology AgileBPM up to 2.5.0. Affected by this vulnerability is the function executeScript of the file /src/main/java/com/dstz/sys/rest/controller/SysScriptController.java of the component Groovy Script...
CVE-2025-5680
A vulnerability classified as critical was found in Shenzhen Dashi Tongzhou Information Technology AgileBPM up to 2.5.0. Affected by this vulnerability is the function executeScript of the file /src/main/java/com/dstz/sys/rest/controller/SysScriptController.java of the component Groovy Script...
CVE-2025-5680 Shenzhen Dashi Tongzhou Information Technology AgileBPM Groovy Script SysScriptController.java executeScript deserialization
A vulnerability classified as critical was found in Shenzhen Dashi Tongzhou Information Technology AgileBPM up to 2.5.0. Affected by this vulnerability is the function executeScript of the file /src/main/java/com/dstz/sys/rest/controller/SysScriptController.java of the component Groovy Script...
CVE-2025-5680
CVE-2025-5680 affects AgileBPM up to 2.5.0. Root cause: deserialization in the Groovy Script Handler, via the executeScript function in SysScriptController.java, allowing remote exploitation. Exploit described publicly; remote attack possible. Affected component: Groovy Script Handler (executeScr...