CVE-2025-3621 – ProTNS ActADUR Remote Code Inclusion and Command Injection

July 15, 2025

CVE ID : CVE-2025-3621

Published : July 15, 2025, 8:15 a.m. | 7 hours, 29 minutes ago

Description : Vulnerabilities* in ActADUR local server product, developed and maintained by ProTNS, allows Remote Code Inclusion on host systems.

* vulnerabilities:
*

Improper Neutralization of Special Elements used in a Command (‘Command Injection’)
* Use of Hard-coded Credentials
* Improper Authentication
* Binding to an Unrestricted IP Address

The vulnerability has been rated as critical.This issue affects ActADUR: from v2.0.1.9 before v2.0.2.0., hence updating to version v2.0.2.0. or above is required.

Severity: 9.6 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7667 – WordPress Restrict File Access CSRF Vulnerability

Next Article CVE-2025-7360 – Elementor Page Builder & Gutenberg Blocks & Form Builder HT Contact Form Widget File Moving Vulnerability

Highlights

CVE-2025-4185 – Wangshen SecGate 3600 File Path Traversal Vulnerability

May 2, 2025

CVE ID : CVE-2025-4185

Published : May 2, 2025, 12:15 a.m. | 3 hours, 12 minutes ago

Description : A vulnerability, which was classified as critical, has been found in Wangshen SecGate 3600 2024. This issue affects some unknown processing of the file ?g=obj_area_export_save. The manipulation of the argument file_name leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CVE-2025-3621 – ProTNS ActADUR Remote Code Inclusion and Command Injection

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

Hire the Best Shopify Experts in Houston for Your Online Store

CVE-2025-50262 – Tenda AC6 Buffer Overflow Vulnerability

Could WWDC be Apple’s AI turning point? Here’s what analysts are predicting

CVE-2025-46840 – Adobe Experience Manager Privilege Escalation Improper Authorization

CVE-2025-4185 – Wangshen SecGate 3600 File Path Traversal Vulnerability

How Node.js Handles Async Operations

Best AI Accounting Software in 2025

Universal Design Principles Supporting Operable Content – Equitable Use

CVE-2025-3621 – ProTNS ActADUR Remote Code Inclusion and Command Injection

Related Posts