32°N › Security › Findings › MSS SK 2026 0024

← all advisories

MSS-SK-2026-0024

eval() on plugin options enables RCE

Summary

eval() on plugin options enables RCE.

Impact

see PoC script header

Evidence — code citations

research/audits/signalk/exploits/0024-signalk-ecowitt-eval-on-plugin-options-enables-rce.py

Proof of concept

research/audits/signalk/exploits/0024-signalk-ecowitt-eval-on-plugin-options-enables-rce.py/

0024-signalk-ecowitt-eval-on-plugin-options-enables-rce.py — single-file

← all advisories