CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2025-26014: A Remote Code Execution (RCE) vulnerability in Loggrove v.1.0 allows a remote attacker to execute arbitrary code via the path parameter.
Description
A Remote Code Execution (RCE) vulnerability in Loggrove v.1.0 allows a remote attacker to execute arbitrary code via the path parameter.
Classification
CVE ID: CVE-2025-26014
Affected Products
Vendor: n/a
Product: n/a
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.07% (probability of being exploited)
EPSS Percentile: 17.8% (scored less or equal to compared to others)
EPSS Date: 2025-03-22 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2025-26014https://gitee.com/olajowon/loggrove/issues/IBJT1K
https://github.com/olajowon/loggrove/
https://gitee.com/olajowon/loggrove/