CVE-2025-67888 | Control Web Panel up to 0.9.8.1208 GET Parameter admin/index.php key os command injection

A vulnerability was found in Control Web Panel up to 0.9.8.1208. It has been declared as critical. Impacted is an unknown function of the file admin/index.php of the component GET Parameter Handler. Such manipulation of the argument key leads to os command injection.

This vulnerability is traded as CVE-2025-67888. The attack may be launched remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More