CVE-2025-27106

binance-trading-bot is an automated Binance trading bot with trailing buy/sell strategy. Authenticated users of binance-trading-bot can achieve Remote Code Execution on the host system due to a command injection vulnerability in the `/restore` endpoint. The restore endpoint of binance-trading-bot is vulnerable to command injection via the `/restore` endpoint. The name of the uploaded file is passed to shell.exec without sanitization other than path normalization, resulting in Remote Code Execution. This may allow any authorized user to execute code in the context of the host machine. This issue has been addressed in version 0.0.100 and all users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/chrisleekr/binance-trading-bot/blob/dd8e1a91b872a48aec47bbe1280c1c6ea96784d9/app/frontend/webserver/handlers/restore-post.js#L14
https://github.com/chrisleekr/binance-trading-bot/commit/99d464cf8ef858d441189993054ec5f5f86e6213
https://github.com/chrisleekr/binance-trading-bot/security/advisories/GHSA-wq6j-4388-4gg5

Configurations

No configuration.

History

15 Apr 2026, 00:35

Type	Values Removed	Values Added
Summary		(es) binance-trading-bot es un bot de trading automatizado de Binance con una estrategia de compra/venta de seguimiento. Los usuarios autenticados de binance-trading-bot pueden lograr la ejecución remota de código en el sistema host debido a una vulnerabilidad de inyección de comandos en el endpoint `/restore`. El endpoint de restauración de binance-trading-bot es vulnerable a la inyección de comandos a través del endpoint `/restore`. El nombre del archivo cargado se pasa a shell.exec sin ninguna depuración más allá de la normalización de la ruta, lo que da como resultado la ejecución remota de código. Esto puede permitir que cualquier usuario autorizado ejecute código en el contexto de la máquina host. Este problema se ha solucionado en la versión 0.0.100 y se recomienda a todos los usuarios que actualicen. No existen workarounds conocidos para esta vulnerabilidad.

22 Feb 2025, 16:15

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.8

21 Feb 2025, 22:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-02-21 22:15

Updated : 2026-04-15 00:35

NVD link : CVE-2025-27106

Mitre link : CVE-2025-27106

CVE.ORG link : CVE-2025-27106

JSON object : View

Products Affected

No product.

CWE

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

8.8 /10