pkg:Packagist/billz/raspap-webgui

10 total CVEsCRITICAL2HIGH6MEDIUM1

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.9CVE-2024-41637RaspAP allows an attacker to escalate privileges
    from 0, <= 3.1.4
  • CRITICAL9.8CVE-2022-39986RaspAP Command Injection vulnerability
    >= 2.8.0, < 2.8.8
  • HIGH8.8CVE-2026-24788RaspAP raspap-webgui contains an OS Command Injection vulnerability
    from 0, < 3.3.6
  • HIGH8.8CVE-2022-39987RaspAP Command Injection vulnerability
    >= 2.8.0, < 2.9.5
  • HIGH8.8CVE-2023-30260RaspAP raspap-webgui Command Injection vulnerability
    from 0, < 2.8.9
  • HIGH8.8CVE-2021-38556Command Injection in RaspAP 2.6.6
    from 0, <= 2.6.6
  • HIGH8.8CVE-2021-38557raspap-webgui in RaspAP 2.6.6 allows attackers to execute commands as root because of the insecure sudoers permissions.
    from 0, <= 2.6.6
  • HIGH7.5CVE-2024-28754raspap-webgui vulnerable to denial of service
    from 0, < 3.1.0
  • MEDIUM4.7CVE-2024-2497RaspAP Vulnerable to Code Injection via an Unknown Process in File `includes/provider.php`
    from 0, <= 3.0.9
  • CVE-2025-44163raspap-webgui has a Directory Traversal vulnerability
    from 0, < 3.3.6