CVE-2025-6102 – Wifi-soft UniBox Controller Os Command Injection Vulnerability

June 16, 2025

CVE ID : CVE-2025-6102

Published : June 16, 2025, 3:15 a.m. | 1 hour, 14 minutes ago

Description : A vulnerability classified as critical was found in Wifi-soft UniBox Controller up to 20250506. Affected by this vulnerability is an unknown functionality of the file /authentication/logout.php. The manipulation of the argument mac_address leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6104 – Wifi-soft UniBox Controller Os Command Injection Vulnerability

Next Article CVE-2025-6103 – “WiFi-soft UniBox Controller Os Command Injection Vulnerability”

Highlights

CVE-2025-4917 – PHPGurukul Auto Taxi Stand Management System SQL Injection Vulnerability

May 19, 2025

CVE ID : CVE-2025-4917

Published : May 19, 2025, 8:15 a.m. | 3 hours, 1 minute ago

Description : A vulnerability classified as critical has been found in PHPGurukul Auto Taxi Stand Management System 1.0. Affected is an unknown function of the file /admin/new-autoortaxi-entry-form.php. The manipulation of the argument drivername leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

This week in AI dev tools: Gemini API Batch Mode, Amazon SageMaker AI updates, and more (July 11, 2025)

JFrog finds MCP-related vulnerability, highlighting need for stronger focus on security in MCP ecosystem

8 Key Questions Every CEO Should Ask Before Hiring a Node.js Development Company in 2025

Vibe Loop: AI-native reliability engineering for the real world

Distribution Release: CachyOS 250713

Most AI projects are abandoned – 5 ways to ensure your data efforts succeed

How agentic AI is transforming the very foundations of business strategy

The best Xbox and PC headset I’ve used for the last couple years is on sale

The details of TC39’s last meeting

The details of TC39’s last meeting

new Date(“wtf”) – How well do you know JavaScript’s Date class?

Francisco Bergeret Paves the Way Through Strong Leadership at Perficient

Distribution Release: CachyOS 250713

Distribution Release: CachyOS 250713

Word for the Web Finally Gets Proper Header and Footer Editing

Windows 11 Build 27898 Adds Small Taskbar Icons, Quick Recovery, Smarter Sharing

CVE-2025-6102 – Wifi-soft UniBox Controller Os Command Injection Vulnerability

Critical Cisco Vulnerability in Unified CM Grants Root Access via Static Credentials

Critical Vulnerability in Anthropic’s MCP Exposes Developer Machines to Remote Exploits

CVE-2025-48959 – Acronis Cyber Protect Cloud Agent Local Privilege Escalation

MuZero, AlphaZero, and AlphaDev: Optimizing computer systems

Exploring the CSS contrast-color() Function… a Second Time

CVE-2025-45322 – Kashipara Online Service Management Portal SQL Injection Vulnerability

CVE-2025-4917 – PHPGurukul Auto Taxi Stand Management System SQL Injection Vulnerability

Beyond Provocative: How One AI Company’s Ad Campaign Betrays Humanity

Sam Altman says ChatGPT has evolved beyond a mere “Google replacement” — with ads potentially coming to users

Operation RoundPress

CVE-2025-6102 – Wifi-soft UniBox Controller Os Command Injection Vulnerability

Related Posts