Raspap: >> Raspap-Webgui >> 1.4.0 Security Vulnerabilities
In RaspAP raspap-webgui 3.3.2 and earlier, a command injection vulnerability exists in the includes/hostapd.php script. The vulnerability is due to improper sanitizing of user input passed via the interface parameter.
CVSS Score
9.8
EPSS Score
0.004
Published
2025-08-27
In RaspAP raspap-webgui 3.0.9 and earlier, a command injection vulnerability exists in the clearlog.php script. The vulnerability is due to improper sanitization of user input passed via the logfile parameter.
CVSS Score
9.8
EPSS Score
0.01
Published
2024-11-29