CVE-2025-34102P2CRITICALCVSS 9.3PoC≥ unspecified PHP versions, < ASP.NET rewrite (2009)2025-07-10
CVE-2025-34102 [CRITICAL] CWE-20 CVE-2025-34102: A remote code execution vulnerability exists in CryptoLog (PHP version, discontinued since 2009) due
A remote code execution vulnerability exists in CryptoLog (PHP version, discontinued since 2009) due to a chained exploitation of SQL injection and command injection vulnerabilities. An unauthenticated attacker can gain shell access as the web server user by first exploiting a SQL injection flaw in login.php to bypass authentication, followed by co
nvd