CRITICAL
Megasys Enterprises
CVE published 2025-09-30
CVE-2025-10659
CVE-2025-10659 is a critical remote code execution issue in Megasys Enterprises Telenium Online Web Application. According to CISA’s advisory, an unauthenticated network attacker can send a crafted HTTP request to a vulnerable PHP endpoint and inject operating system commands because of improper handling of user input and insecure regular-expression termination. The result is remote code execution in the [truncated]