CVE-2025-10870 | DIAL CentrosNet up to 2.64 ultralogin.php ultralogin sql injection

A vulnerability marked as critical has been reported in DIAL CentrosNet up to 2.64. The impacted element is an unknown function of the file /centrosnet/ultralogin.php. Performing manipulation of the argument ultralogin results in sql injection.

This vulnerability was named CVE-2025-10870. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More