CVE-2025-32778P1CRITICALCVSS 9.3ExploitedPoCfixed in 2.0.12025-04-15
CVE-2025-32778 [CRITICAL] CWE-78 CVE-2025-32778: Web-Check is an all-in-one OSINT tool for analyzing any website. A command injection vulnerability e
Web-Check is an all-in-one OSINT tool for analyzing any website. A command injection vulnerability exists in the screenshot API of the Web Check project (Lissy93/web-check). The issue stems from user-controlled input (url) being passed unsanitized into a shell command using exec(), allowing attackers to execute arbitrary system commands on the unde
nvd