Critical severityNVD Advisory· Published Nov 7, 2025· Updated Apr 15, 2026
CVE-2025-10870
CVE-2025-10870
Description
SQL injection vulnerability in DIAL's CentrosNet v2.64. Allows an attacker to retrieve, create, update, and delete databases by sending POST and GET requests with the 'ultralogin' parameter in '/centrosnet/ultralogin.php'.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 2.64
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.