CVE-2025-50688
The data sources describe a command-injection vulnerability in TwistedWeb version 14.0.0 arising from improper input sanitization in the file-upload path. An attacker can upload a crafted file via HTTP PUT (e.g., a reverse shell) and trigger arbitrary commands on the target system, potentially ac...