← Back

Pocketvj Control Panel Firmware

pocketvj_control_panel_firmware

Vendor: Magdesign • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-63334
1Magdesign
1Pocketvj Control Panel Firmware
Jan 9, 2026
Nov 5, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
PocketVJ CP PocketVJ-CP-v3 pvj version 3.9.1 contains an unauthenticated remote code execution vulnerability in the submit_opacity.php component. The application fails to sanitize user input in the opacityValue POST para...Show more
PocketVJ CP PocketVJ-CP-v3 pvj version 3.9.1 contains an unauthenticated remote code execution vulnerability in the submit_opacity.php component. The application fails to sanitize user input in the opacityValue POST parameter before passing it to a shell command, allowing remote attackers to execute arbitrary commands with root privileges on the underlying system.Show less
CVE-2025-45326
1Magdesign
1Pocketvj Control Panel Firmware
Oct 17, 2025
Sep 23, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
An issue in PocketVJ CP PocketVJ-CP-v3 pvj 3.9.1 allows remote attackers to execute arbitrary code via the submit_size.php component.