cve 2025 32778

CVE-2025-32778 is a critical command injection vulnerability in the Web-Check OSINT tool's screenshot API, allowing unauthenticated remote code execution. The flaw was patched by the project in April 2025. This CVE does not appear in Microsoft's Security Update Guide, indicating it is not a Microsoft product vulnerability. Discussions on WindowsForum.com clarify the correct CVE number and provide background on the issue, emphasizing the importance of updating Web-Check to the latest version to mitigate risk.