CVE-2025-5145 – Netcore Query String Handler Remote Command Injection Vulnerability

May 25, 2025

CVE ID : CVE-2025-5145

Published : May 25, 2025, 6:15 a.m. | 2 hours, 40 minutes ago

Description : A vulnerability, which was classified as critical, was found in Netcore NBR1005GPEV2, B6V2, COVER5, NAP830, NAP930, NBR100V2, NBR200V2 and POWER13 up to 20250508. This affects an unknown part of the file /www/cgi-bin/ of the component Query String Handler. The manipulation leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5146 – Netcore Routerd HTTP Header Handler Command Injection Vulnerability

Next Article La rivoluzione architetturale di AerynOS: Non solo una distribuzione GNU/Linux

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

7 MagSafe accessories that I recommend every iPhone user should have

I replaced my Kindle with an iPad Mini as my ebook reader – 8 reasons why I don’t regret it

Windows 11 version 25H2: Everything you need to know about Microsoft’s next OS release

Elden Ring Nightreign already has a duos Seamless Co-op mod from the creator of the beloved original, and it’ll be “expanded on in the future”

Student Record Android App using SQLite

Student Record Android App using SQLite

When Array uses less memory than Uint8Array (in V8)

Laravel 12 Starter Kits: Definite Guide Which to Choose

Photobooth is photobooth software for the Raspberry Pi and PC

Photobooth is photobooth software for the Raspberry Pi and PC

Le notizie minori del mondo GNU/Linux e dintorni della settimana nr 22/2025

Rilasciata PorteuX 2.1: Novità e Approfondimenti sulla Distribuzione GNU/Linux Portatile Basata su Slackware

CVE-2025-5145 – Netcore Query String Handler Remote Command Injection Vulnerability

New Linux Flaws Allow Password Hash Theft via Core Dumps in Ubuntu, RHEL, Fedora

Exploit details for max severity Cisco IOS XE flaw now public

Why GIGL needs a UX redesign

DOOM: The Dark Ages’ soundtrack is now available across different platforms

Indonesia National Data Center Hack Disrupts Government Services, Affecting Over 200 Agencies

Cerebras CEO on DeepSeek: Every time computing gets cheaper, the market gets bigger

Transition application code to images with Cloud Native Buildpacks

Meta Launches Llama-3 Powered Meta AI Chatbot Assistant to Compete with ChatGPT

CVE-2025-5367 – “PHPGurukul Online Shopping Portal SQL Injection Vulnerability”

Both of Getty’s commercial-safe AI image generators just got smarter and faster

CVE-2025-5145 – Netcore Query String Handler Remote Command Injection Vulnerability

Related Posts