Unknown · Raspap-Webgui · CVE-2026-24788
**Name of the Vulnerable Software and Affected Versions**
RaspAP versions prior to 3.3.6
**Description**
The RaspAP raspap-webgui software contains an OS command injection issue. Successful exploitation allows a user with login access to execute arbitrary OS commands.
**Recommendations**
Update RaspAP raspap-webgui to version 3.3.6 or later.