CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-10326

A security flaw has been discovered in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected is an unknown function of the file /htdocs/api/playlist/single.php. Performing manipulation of the argument playlist results in os command injection. The attack can be initiated remotely. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.9%

CVSS Severity

CVSS v3 Score 6.3

CVSS v2 Score 6.5

References

Products affected by CVE-2025-10326

Sourcefabric » Rpi-Jukebox-Rfid » Version: N/A

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:-
Sourcefabric » Rpi-Jukebox-Rfid » Version: 0.9

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:0.9
Sourcefabric » Rpi-Jukebox-Rfid » Version: 0.9.1

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:0.9.1
Sourcefabric » Rpi-Jukebox-Rfid » Version: 0.9.2

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:0.9.2
Sourcefabric » Rpi-Jukebox-Rfid » Version: 0.9.3

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:0.9.3
Sourcefabric » Rpi-Jukebox-Rfid » Version: 0.9.4

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:0.9.4
Sourcefabric » Rpi-Jukebox-Rfid » Version: 0.9.5

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:0.9.5
Sourcefabric » Rpi-Jukebox-Rfid » Version: 0.9.6

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:0.9.6
Sourcefabric » Rpi-Jukebox-Rfid » Version: 0.9.7

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:0.9.7
Sourcefabric » Rpi-Jukebox-Rfid » Version: 1.0.0

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:1.0.0
Sourcefabric » Rpi-Jukebox-Rfid » Version: 1.1.0

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:1.1.0
Sourcefabric » Rpi-Jukebox-Rfid » Version: 1.1.1

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:1.1.1
Sourcefabric » Rpi-Jukebox-Rfid » Version: 1.1.2

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:1.1.2
Sourcefabric » Rpi-Jukebox-Rfid » Version: 1.1.3

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:1.1.3
Sourcefabric » Rpi-Jukebox-Rfid » Version: 1.1.4

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:1.1.4
Sourcefabric » Rpi-Jukebox-Rfid » Version: 1.1.6

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:1.1.6
Sourcefabric » Rpi-Jukebox-Rfid » Version: 1.1.7

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:1.1.7
Sourcefabric » Rpi-Jukebox-Rfid » Version: 1.1.8

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:1.1.8
Sourcefabric » Rpi-Jukebox-Rfid » Version: 1.1.9

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:1.1.9
Sourcefabric » Rpi-Jukebox-Rfid » Version: 2.0.0

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:2.0.0
Sourcefabric » Rpi-Jukebox-Rfid » Version: 2.1.0

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:2.1.0
Sourcefabric » Rpi-Jukebox-Rfid » Version: 2.1.1

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:2.1.1
Sourcefabric » Rpi-Jukebox-Rfid » Version: 2.2.0

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:2.2.0
Sourcefabric » Rpi-Jukebox-Rfid » Version: 2.3.0

cpe:2.3:a:sourcefabric:rpi-jukebox-rfid:2.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-10326

Products

Pricing

Contact Us