CVE-2025-6897 – D-Link DI-7300G+ HTTPD Debug ASP OS Command Injection Vulnerability

June 30, 2025

CVE ID : CVE-2025-6897

Published : June 30, 2025, 8:15 a.m. | 1 hour, 46 minutes ago

Description : A vulnerability classified as critical was found in D-Link DI-7300G+ 19.12.25A1. Affected by this vulnerability is an unknown functionality of the file httpd_debug.asp. The manipulation of the argument Time leads to os command injection. The exploit has been disclosed to the public and may be used.

Severity: 5.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-38088 – IBM Power Systems Out-of-Bounds Read Vulnerability

Next Article CVE-2025-38090 – Linux Kernel Rapidio Heap Overwrite Vulnerability

Highlights

CVE-2025-6801 – Marvell QConvergeConsole Directory Traversal Arbitrary File Write Vulnerability

July 7, 2025

CVE ID : CVE-2025-6801

Published : July 7, 2025, 3:15 p.m. | 2 hours, 59 minutes ago

Description : Marvell QConvergeConsole saveNICParamsToFile Directory Traversal Arbitrary File Write Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of Marvell QConvergeConsole. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the implementation of the saveNICParamsToFile method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to write files in the context of SYSTEM. Was ZDI-CAN-24921.

Severity: 8.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Iranian APT35 Hackers Targeting Israeli Tech Experts with AI-Powered Phishing Attacks

June 26, 2025

Mila & Universite de Montreal Researchers Introduce the Forgetting Transformer (FoX) to Boost Long-Context Language Modeling without Sacrificing Efficiency

April 25, 2025

Firefox 139 Brings Custom New Tab Wallpapers, Better Upload Speeds

May 26, 2025

The Psychology Of Color In UX Design And Digital Products

This week in AI dev tools: Claude Sonnet 4’s larger context window, ChatGPT updates, and more (August 15, 2025)

Sentry launches MCP monitoring tool

10 Benefits of Hiring a React.js Development Company (2025–2026 Edition)

I flew Insta360’s new ‘Antigravity’ drone around Los Angeles, and it was impossible to miss a shot

The $100 open-ear headphones that made me forget about my Shokz

5 quick and simple ways to greatly improve the quality of your headphones

Installing a UPS battery backup saved my work PC – here’s the full story

Maintaining Data Consistency with Laravel Database Transactions

Maintaining Data Consistency with Laravel Database Transactions

Building a Multi-Step Form With Laravel, Livewire, and MongoDB

Inertia Releases a New Form Component

Google’s Gemini AI had a full-on meltdown while coding — calling itself a fool, a disgrace, and begging for freedom from its own loop

Google’s Gemini AI had a full-on meltdown while coding — calling itself a fool, a disgrace, and begging for freedom from its own loop

Take-Two hints at $100 price tag for Grand Theft Auto VI — will it deliver on value?

ChatGPT Go offers GPT-5, image creation, and longer memory — all for $5 (if you’re lucky enough to live where it’s available)

CVE-2025-6897 – D-Link DI-7300G+ HTTPD Debug ASP OS Command Injection Vulnerability

Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution

Zero Trust + AI: Privacy in the Age of Agentic AI

I found the best July 4th deals live now: Save on outdoor, tech, home and more

CVE-2025-47637 – STAGGS Web Server Unrestricted File Upload RCE

Building a GPU-Accelerated Ollama LangChain Workflow with RAG Agents, Multi-Session Chat Performance Monitoring

I’ve been wanting an Android-powered iPad Mini for years, and this tablet is easily the best I’ve found

CVE-2025-6801 – Marvell QConvergeConsole Directory Traversal Arbitrary File Write Vulnerability

Iranian APT35 Hackers Targeting Israeli Tech Experts with AI-Powered Phishing Attacks

Mila & Universite de Montreal Researchers Introduce the Forgetting Transformer (FoX) to Boost Long-Context Language Modeling without Sacrificing Efficiency

Firefox 139 Brings Custom New Tab Wallpapers, Better Upload Speeds

CVE-2025-6897 – D-Link DI-7300G+ HTTPD Debug ASP OS Command Injection Vulnerability

Related Posts