Active Exploitation Confirmed for Gladinet and CWP — Patch Now
CISA added CVE‑2025‑11371 (Gladinet CentreStack / Triofox — sensitive files disclosure) and CVE‑2025‑48703 (Control Web Panel — pre‑auth command injection) to the KEV catalog with […]
gladinet
Gladinet exploited
Executive summary Threat actors are actively exploiting a zero-day Local File Inclusion (LFI) vulnerability, tracked as CVE-2025-11371, in Gladinet CentreStack and Triofox. The flaw lets […]