CVE-2026-34111
CriticalCVSS 9.8Exploitation Probability (EPSS)
Low risk42th percentile — higher than 42% of all known CVEs
Summary
A vulnerability in the Guardian language-system allows an unauthenticated attacker to execute arbitrary OS commands remotely by injecting shell metacharacters into the id parameter, which is passed unsanitized to the PHP exec() function in speechmac_text.php.
Risk Assessment
An attacker can fully compromise the server, steal data, install malware, or disrupt operations, posing a critical threat to confidentiality, integrity, and availability.
Recommendation
Immediately update the Guardian language-system to the latest patched version. As a workaround, disable or restrict access to speechmac_text.php and implement input filtering and validation for all parameters.
Original NVD description (English source)
Guardian language-system passes the id GET parameter directly into a PHP exec() call in speechmac_text.php (line 18) without sanitization: exec(\"php jobs/speech_audio_mac_text.php \".$login_session.\" \".$_GET['id'].\" ...\"). No authentication is required. An unauthenticated remote attacker can append shell metacharacters to execute arbitrary OS commands on the server.

