Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Mozart FM Transmitter — Vulnerabilities & Security Advisories 14

All 14 CVE vulnerabilities found in Mozart FM Transmitter, with AI-generated Chinese analysis, references, and POCs.

Vendor: DB Electronica Telecomunicazioni S.p.A.

CVE IDTitleCVSSSeverityPublished
CVE-2025-66263 Unauthenticated Arbitrary File Read via Null Byte Injection CWE-158 7.5AIHighAI2025-11-26
CVE-2025-66262 Arbitrary File Overwrite via Tar Extraction Path Traversal CWE-22 8.1AIHighAI2025-11-26
CVE-2025-66261 Unauthenticated OS Command Injection (restore_settings.php) CWE-78 9.8AICriticalAI2025-11-26
CVE-2025-66260 PostgreSQL SQL Injection (status_sql.php) CWE-89 9.8AICriticalAI2025-11-26
CVE-2025-66259 Authenticated Root Remote Code Execution through improper filtering of HTTP post request parameters CWE-20 7.2AIHighAI2025-11-26
CVE-2025-66258 Stored Cross-Site Scripting via XML Injection CWE-79 5.4AIMediumAI2025-11-26
CVE-2025-66257 Unauthenticated Arbitrary File Deletion (patch_contents.php) CWE-73 6.5AIMediumAI2025-11-26
CVE-2025-66256 Unauthenticated Arbitrary File Upload (patch_contents.php) CWE-434 9.8AICriticalAI2025-11-26
CVE-2025-66255 Unauthenticated Arbitrary File Upload (upgrade_contents.php) CWE-345 9.1AICriticalAI2025-11-26
CVE-2025-66254 Unauthenticated Arbitrary File Deletion (upgrade_contents.php) CWE-73 8.1AIHighAI2025-11-26
CVE-2025-66253 Unauthenticated OS Command Injection (start_upgrade.php) CWE-78 8.8AIHighAI2025-11-26
CVE-2025-66252 Infinite Loop Denial of Service via Failed File Deletion CWE-835 7.5AIHighAI2025-11-26
CVE-2025-66251 Unauthenticated Path Traversal with Arbitrary File Deletion CWE-22 6.5AIMediumAI2025-11-26
CVE-2025-66250 Unauthenticated Arbitrary File Upload (status_contents.php) CWE-434 9.8AICriticalAI2025-11-26

All 14 known CVE vulnerabilities affecting Mozart FM Transmitter with full Chinese analysis, references, and POCs where available.