CVE-2025-66263 | DB Electronica Telecomunicazioni Mozart FM Transmitter up to 7000 Setting download_setting.php filename null byte or nul character

November 26, 2025 Yanac

A vulnerability labeled as problematic has been found in DB Electronica Telecomunicazioni Mozart FM Transmitter up to 7000. This issue affects some unknown processing of the file /var/tdf/download_setting.php of the component Setting Handler. The manipulation of the argument filename results in improper neutralization of null byte or nul character.

This vulnerability is identified as CVE-2025-66263. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More