CVE-2025-47423
CVE-2025-47423
Personal Weather Station Dashboard 12_lts allows unauthenticated remote attackers to read arbitrary files via ../ directory traversal in the test parameter to /others/_test.php, as demonstrated by reading the server's private SSL key in cleartext.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
Produtos afetados
pwsdashboard · Personal Weather Station DashboardQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →