Magdesign Pocketvj Control Panel Firmware vulnerabilities
2 known vulnerabilities affecting magdesign/pocketvj_control_panel_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-63334P2CRITICALCVSS 9.8v3.9.12025-11-05
CVE-2025-63334 [CRITICAL] CWE-78 CVE-2025-63334: PocketVJ CP PocketVJ-CP-v3 pvj version 3.9.1 contains an unauthenticated remote code execution vulne
PocketVJ CP PocketVJ-CP-v3 pvj version 3.9.1 contains an unauthenticated remote code execution vulnerability in the submit_opacity.php component. The application fails to sanitize user input in the opacityValue POST parameter before passing it to a shell command, allowing remote attackers to execute arbitrary commands with root privileges on the un
nvd
CVE-2025-45326P3MEDIUMCVSS 6.5v3.9.12025-09-23
CVE-2025-45326 [MEDIUM] CWE-77 CVE-2025-45326: An issue in PocketVJ CP PocketVJ-CP-v3 pvj 3.9.1 allows remote attackers to execute arbitrary code v
An issue in PocketVJ CP PocketVJ-CP-v3 pvj 3.9.1 allows remote attackers to execute arbitrary code via the submit_size.php component.
nvd