CVE-2025-6266 | FLIR AX8 up to 1.46 /upload.php File unrestricted upload

Inserito da Angelo Barbosa | Giu 19, 2025 | CVE

A vulnerability was found in FLIR AX8 up to 1.46. It has been declared as critical. This vulnerability affects unknown code of the file /upload.php. The manipulation of the argument File leads to unrestricted upload.

This vulnerability was named CVE-2025-6266. The attack can be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-6266 | FLIR AX8 up to 1.46 /upload.php File unrestricted upload

Post correlati

CVE-2024-21499 | greenpau caddy-security X-Forwarded-Proto http headers for scripting syntax (Issue 270)

CVE-2024-13279 | Drupal Two-factor Authentication up to 1.7.x session fixiation

CVE-2024-2112 | 10Web Form Maker up to 1.15.22 on WordPress information disclosure

CVE-2023-37529 | HCL BigFix Platform up to 9.5.23/10.0.10 Web Reports cross site scripting (KB0110209)