sawtooth software News Articles
Recent news articles refferecing the vendors vulnerabilities.
CyberSecurityNewsCVE-2025-34300Lighthouse Studio RCE Vulnerability Let Attackers Gain Access to Hosting Servers
CVE-2025-34300 in Lighthouse Studio allows RCE via survey links, risking thousands of servers due to unsanitized Perl CGI templates.
CVEFeed.ioCVE-2025-34300CVE-2025-34300 - Sawtooth Software Lighthouse Studio Template Injection
A template injection vulnerability exists in Sawtooth Softwareโs Lighthouse Studio versions prior to 9.16.14 via the ciwweb.pl http://ciwweb.pl/ Perl web application. Exploitation allows an unauthenticated attacker can execute arbitrary commands.
No more news articles to load.