PT-2026-24033 · Unknown · Wwwdnload.Cgi
Adrien Rey
+1
·
Published
2026-03-09
·
Updated
2026-03-09
·
CVE-2025-41763
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
versions (affected versions not specified)
Description
A remote attacker with low privileges can interact directly with the ''wwwdnload.cgi'' endpoint to download any resource available to administrators. This includes system backups and certificate request files. The attacker interacts with the endpoint to access resources.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wwwdnload.Cgi