Raspap Raspap-webgui

5 CVEs affecting Raspap Raspap-webgui. Latest disclosed: 2026-02-02. Critical: 2, High: 1.

Top CVEs affecting Raspap Raspap-webgui
CVESeverityScorePublishedSummary
CVE-2025-50428Critical9.82025-08-27In RaspAP raspap-webgui 3.3.2 and earlier, a command injection vulnerability exists in the includes/hostapd.php script. The vulnerability is due to improper sa…
CVE-2024-36622Critical9.82024-11-29In RaspAP raspap-webgui 3.0.9 and earlier, a command injection vulnerability exists in the clearlog.php script. The vulnerability is due to improper sanitizati…
CVE-2026-24788High8.82026-02-02RaspAP raspap-webgui versions prior to 3.3.6 contain an OS command injection vulnerability. If exploited, an arbitrary OS command may be executed by a user who…
CVE-2025-44163Medium6.32025-06-27RaspAP raspap-webgui 3.3.1 is vulnerable to Directory Traversal in ajax/networking/get_wgkey.php. An authenticated attacker can send a crafted POST request wit…
CVE-2024-2497Medium4.72024-03-15A vulnerability was found in RaspAP raspap-webgui 3.0.9 and classified as critical. This issue affects some unknown processing of the file includes/provider.ph…