CVE-2025-1066 – OpenPLC remote File Inclusion Vulnerability

The following table lists the changes that have been made to the CVE-2025-1066 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics.

  • New CVE Received by [email protected]

    Feb. 06, 2025

    Action Type Old Value New Value
    Added Description OpenPLC_V3 contains an arbitrary file upload vulnerability, which could be leveraged for malvertising or phishing campaigns.
    Added Reference https://github.com/thiagoralves/OpenPLC_v3/commit/d1b1a3b7e97f2b3fef0876056cf9d7879991744a
    Added Reference https://medium.com/@alimuhammadsecured/cyberforce-2024-how-i-found-my-first-cve-openplcv3-16c058b114b0

نوشته های مشابه

CVE-2025-22992 – Emoncms SQL Injection

CVE-2024-47258 – 2N Access Commander TLS Certificate Verification Weakness

CVE-2025-24981 – Vue Markdown Converter (MDC) Angular JavaScript XSS

CVE-2025-24786 – WhoDB Path Traversal SQL Injection Vulnerability