Personal Weather Station Dashboard 12 - Directory Traversal

Short Info

Level

Medium

Single Scan

Can be used by

Asset Owner

Estimated Time

10 seconds

Time Interval

13 days 5 hours

Scan only one

Domain, Subdomain, IPv4

Toolbox

-

Personal Weather Station Dashboard 12_lts allows unauthenticated remote attackers to read arbitrary files via ../ directory traversal in the test parameter to /others/_test.php, as demonstrated by reading the server's private SSL key in cleartext.

References:

https://github.com/Haluka92/CVE-2025-47423
https://pwsdashboard.com/

Get started to protecting your digital assets

Start trial See the plans

Personal Weather Station Dashboard 12 - Directory Traversal

Short Info

-

Detail

Category