Skip to main content
CVE-2025-66261 CRITICAL POC Act Now

Unauthenticated OS Command Injection (restore_settings.php) in DB Electronica Telecomunicazioni S.p.A. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection RCE Mozart Next 100 Firmware Mozart Next 1000 Firmware +20
NVD
CVSS 4.0
9.9
EPSS
0.7%
CVE-2025-66256 CRITICAL POC Act Now

Unauthenticated Arbitrary File Upload (patch_contents.php) in DB Electronica Telecomunicazioni S.p.A. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Mozart Next 100 Firmware Mozart Next 1000 Firmware Mozart Next 2000 Firmware +19
NVD
CVSS 4.0
9.9
EPSS
0.1%
CVE-2025-66255 CRITICAL POC Act Now

Unauthenticated Arbitrary File Upload (upgrade_contents.php) in DB Electronica Telecomunicazioni S.p.A. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP RCE Mozart Next 3000 Firmware Mozart Next 3500 Firmware +20
NVD
CVSS 4.0
9.9
EPSS
0.3%
CVE-2025-66253 CRITICAL POC Act Now

Unauthenticated OS Command Injection (start_upgrade.php) in DB Electronica Telecomunicazioni S.p.A. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection RCE Mozart Next 100 Firmware Mozart Next 1000 Firmware +20
NVD
CVSS 4.0
9.9
EPSS
0.7%
CVE-2025-50433 CRITICAL POC Act Now

An issue was discovered in imonnit.com (2025-04-24) allowing malicious actors to gain escalated privileges via crafted password reset to take over arbitrary user accounts. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Imonnit
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-26155 CRITICAL POC Act Now

NCP Secure Enterprise Client 13.18 and NCP Secure Entry Windows Client 13.19 have an Untrusted Search Path vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Ncp Secure Entry Client Secure Enterprise Client Windows
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-55469 CRITICAL POC Act Now

Incorrect access control in youlai-boot v2.21.1 allows attackers to escalate privileges and access the Administrator backend. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Youlai Boot
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-65236 CRITICAL POC Act Now

OpenCode Systems USSD Gateway OC Release: 5 was discovered to contain a SQL injection vulnerability via the Session ID parameter in the /occontrolpanel/index.php endpoint. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Ussd Gateway
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-65235 CRITICAL POC Act Now

OpenCode Systems USSD Gateway OC Release: 5 Version 6.13.11 was discovered to contain a SQL injection vulnerability via the ID parameter in the getSubUsersByProvider function. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Ussd Gateway
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-50402 CRITICAL POC Act Now

FAST FAC1200R F400_FAC1200R_Q is vulnerable to Buffer Overflow in the function sub_80435780 via the parameter string fac_password. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Fac1200R Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-50399 CRITICAL POC Act Now

FAST FAC1200R F400_FAC1200R_Q is vulnerable to Buffer Overflow in the function sub_80435780 via the parameter password. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Fac1200R Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-66022 CRITICAL POC PATCH Act Now

FACTION is a PenTesting Report Generation and Collaboration Framework. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Authentication Bypass Faction
NVD GitHub
CVSS 3.1
9.6
EPSS
0.9%
CVE-2025-66262 CRITICAL POC Act Now

Arbitrary File Overwrite via Tar Extraction Path Traversal in DB Electronica Telecomunicazioni S.p.A. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload Path Traversal PHP Mozart Next 100 Firmware Mozart Next 1000 Firmware +20
NVD
CVSS 4.0
9.3
EPSS
0.2%
CVE-2025-66259 CRITICAL POC Act Now

Authenticated Root Remote Code Execution via improrer user input filtering in DB Electronica Telecomunicazioni S.p.A. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP RCE Mozart Next 100 Firmware Mozart Next 1000 Firmware Mozart Next 2000 Firmware +19
NVD
CVSS 4.0
9.3
EPSS
0.6%
CVE-2025-66257 CRITICAL POC Act Now

Unauthenticated Arbitrary File Deletion (patch_contents.php) in DB Electronica Telecomunicazioni S.p.A. Rated critical severity (CVSS 9.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Information Disclosure Mozart Next 100 Firmware Mozart Next 1000 Firmware Mozart Next 2000 Firmware +19
NVD
CVSS 4.0
9.2
EPSS
0.2%
CVE-2025-66250 CRITICAL POC Act Now

Unauthenticated Arbitrary File Upload (status_contents.php) in DB Electronica Telecomunicazioni S.p.A. Rated critical severity (CVSS 9.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP Mozart Next 100 Firmware Mozart Next 1000 Firmware Mozart Next 2000 Firmware +19
NVD
CVSS 4.0
9.2
EPSS
0.1%
CVE-2025-65669 CRITICAL POC Act Now

An issue was discovered in classroomio 0.1.13. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Classroomio
NVD GitHub
CVSS 3.1
9.1
EPSS
0.4%
CVE-2025-64128 CRITICAL Act Now

An OS command injection vulnerability exists due to incomplete validation of user-supplied input. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 10.9% and no vendor patch available.

Command Injection
NVD GitHub
CVSS 4.0
10.0
EPSS
10.9%
CVE-2025-64127 CRITICAL Act Now

An OS command injection vulnerability exists due to insufficient sanitization of user-supplied input. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 10.9% and no vendor patch available.

Command Injection
NVD GitHub
CVSS 4.0
10.0
EPSS
10.9%
CVE-2025-64126 CRITICAL Act Now

An OS command injection vulnerability exists due to improper input validation. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 10.9% and no vendor patch available.

Command Injection
NVD GitHub
CVSS 4.0
10.0
EPSS
10.9%
CVE-2025-65276 CRITICAL Act Now

An unauthenticated administrative access vulnerability exists in the open-source HashTech project (https://github.com/henzljw/hashtech) 1.0 thru commit 5919decaff2681dc250e934814fc3a35f6093ee5. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure PHP Authentication Bypass Privilege Escalation Hashtech
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-62354 CRITICAL Act Now

Improper neutralization of special elements used in an OS command ('command injection') in Cursor allows an unauthorized attacker to execute commands that are outside of those specified in the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection RCE
NVD
CVSS 3.1
9.8
EPSS
0.3%
CVE-2025-59390 CRITICAL PATCH Act Now

Apache Druid’s Kerberos authenticator uses a weak fallback secret when the `druid.auth.authenticator.kerberos.cookieSignatureSecret` configuration is not explicitly set. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apache Authentication Bypass Druid
NVD
CVSS 3.1
9.8
EPSS
0.1%
CVE-2025-64657 CRITICAL Act Now

Stack-based buffer overflow in Azure Application Gateway allows an unauthorized attacker to elevate privileges over a network. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow Microsoft Azure Application Gateway
NVD
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-62593 CRITICAL PATCH Act Now

Ray is an AI compute engine. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple RCE Code Injection Mozilla Firefox +2
NVD GitHub
CVSS 4.0
9.4
EPSS
0.0%
CVE-2025-64656 CRITICAL Act Now

Out-of-bounds read in Application Gateway allows an unauthorized attacker to elevate privileges over a network. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Azure Application Gateway
NVD
CVSS 3.1
9.4
EPSS
0.2%
CVE-2025-40934 CRITICAL PATCH Act Now

XML-Sig versions 0.27 through 0.67 for Perl incorrectly validates XML files if signatures are omitted. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Jwt Attack Information Disclosure
NVD GitHub
CVSS 3.1
9.3
EPSS
0.0%
CVE-2025-64130 CRITICAL Act Now

Zenitel TCIV-3+ is vulnerable to a reflected cross-site scripting vulnerability, which could allow a remote attacker to execute arbitrary JavaScript on the victim's browser. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS
NVD GitHub
CVSS 4.0
9.3
EPSS
0.2%
CVE-2025-66266 CRITICAL Act Now

The RupsMon.exe service executable in UPSilon 2000 has insecure permissions, allowing the 'Everyone' group Full Control. Rated critical severity (CVSS 9.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Privilege Escalation
NVD
CVSS 4.0
9.3
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy