CVE-2025-47423
CVE-2025-47423
Personal Weather Station Dashboard 12_lts allows unauthenticated remote attackers to read arbitrary files via ../ directory traversal in the test parameter to /others/_test.php, as demonstrated by reading the server's private SSL key in cleartext.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
Productos afectados
pwsdashboard · Personal Weather Station Dashboard¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →