CVE-2025-66259

Name of the Vulnerable Software and Affected Versions DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30 through 7000

Description The software contains a flaw that allows for remote code execution. An attacker with authentication can execute code due to insufficient input filtering. Specifically, user-supplied data related to hour and time, passed directly into a date shell command within the main ok.php file, is the root cause.

Recommendations Apply updates to versions prior to 7001.