CVE-2025-5030: Ackites KillWxapkg vulnerable to OS Command Injection

May 21, 2025 (updated June 20, 2025)

A vulnerability was found in Ackites KillWxapkg up to 2.4.1. It has been declared as critical. This vulnerability affects the function processFile of the file internal/unpack/unpack.go of the component wxapkg File Parser. The manipulation leads to os command injection. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used.

References

github.com/Ackites/KillWxapkg
github.com/Ackites/KillWxapkg/issues/85
github.com/advisories/GHSA-w6p4-84vc-qc2w
nvd.nist.gov/vuln/detail/CVE-2025-5030
vuldb.com/?ctiid.309850
vuldb.com/?id.309850
vuldb.com/?submit.580526

Code Behaviors & Features

Detect and mitigate CVE-2025-5030 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →