3 matches found
CVE-2025-8259
A vulnerability, which was classified as critical, was found in Vaelsys 4.1.0. This affects the function executeDataObjectProc of the file /grid/vgridserver.php. The manipulation of the argument xajaxargs leads to os command injection. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-8259 Vaelsys VaelsysV4 Web interface vgrid_server.php execute_DataObjectProc os command injection
A vulnerability was identified in Vaelsys VaelsysV4 up to 5.1.0/5.4.0. Affected by this issue is the function executeDataObjectProc of the file /grid/vgridserver.php of the component Web interface. Such manipulation of the argument xajaxargs leads to os command injection. The attack can be execut...
Vaelsys V4 安全漏洞
Vaelsys V4 is an artificial intelligence video analytics platform from Vaelsys, Spain. A security vulnerability exists in Vaelsys V4 version 4.1.0, which originates from improper authorization of the user creation handler in the file /grid/vgridserver.php...