Lighthouse Studio RCE Vulnerability Let Attackers Gain Access to Hosting Servers

Threat Level

49% Cybersecurity News 1 day ago Part of cluster #1283

A critical remote code execution vulnerability has been discovered in Lighthouse Studio, one of the most widely deployed yet relatively unknown survey software platforms developed by Sawtooth Software. The flaw, designated CVE-2025-34300, affects the Perl CGI scripts that power web-based surveys, potentially exposing thousands of hosting servers to complete compromise by attackers who possess nothing […]...

Continue Reading on Original Site

Recommended Articles

Nearly half of MSPs admit to having a ransomware kitty

IT Pro Security 1 hour ago

The firm’s annual MSP report highlights the mounting pressure on MSPs as attackers increasingly leverage the latest AI advancements...

CISA Warns: SysAid Flaws Under Active Attack Enable Remote File Access and SSRF

The Hacker News 2 hours ago

The U.S. Cybersecurity and Infrastructure Security Agency (CISA)addedtwo security flaws impacting SysAid IT support software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of ...

Defending Against ToolShell: SharePoint’s Latest Critical Vulnerability

SentinelOne 8 hours ago

Read up on how to defend against ToolShell, the latest SharePoint critical vulnerability affecting on-premises SharePoint servers....

Researchers Expose Russia’s Most Secretive FSB Spy Network

GB Hackers 16 minutes ago

Researchers Expose Russia’s Most Secretive FSB Spy Network Researchers have pierced the veil of secrecy surrounding the Federal Security Service’s (FSB) 16th Center, a unit inheriting the Soviet KGB’s...

Hacker aus China nutzen neue Sharepoint-Lücke aus

CSO Online 1 hour ago

Microsoft hat drei chinesische Hackergruppen identifiziert, die für die Angriffe über die Sicherheitslücke in SharePoint verantwortlich sein sollen. FOTOGRIN – shutterstock.com Bei den aktuellen Cyber...

Threat Intelligence

Ransomware 3

Attack Types 1

Remote Code Execution

Vulnerabilities 2

RCE Remote Code Execution

Business Intelligence

Technical Indicators

CVEs 1

CVE-2025-34300

Information

Article ID: #3955
Published: 1 day ago
Source: Cybersecurity News

Recommended Articles

Nearly half of MSPs admit to having a ransomware kitty

CISA Warns: SysAid Flaws Under Active Attack Enable Remote File Access and SSRF

Defending Against ToolShell: SharePoint’s Latest Critical Vulnerability

Researchers Expose Russia’s Most Secretive FSB Spy Network

Hacker aus China nutzen neue Sharepoint-Lücke aus

Save to Folder

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies