CVE-2025-34111 | Tiki Wiki CMS Groupware up to 15.1 ELFinder Component connector.minimal.php unrestricted upload (EDB-40091)

Inserito da Angelo Barbosa | Lug 15, 2025 | CVE

A vulnerability was found in Tiki Wiki CMS Groupware up to 15.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file connector.minimal.php of the component ELFinder Component. The manipulation leads to unrestricted upload.

This vulnerability is known as CVE-2025-34111. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-34111 | Tiki Wiki CMS Groupware up to 15.1 ELFinder Component connector.minimal.php unrestricted upload (EDB-40091)

Post correlati

CVE-2025-25241 | SAP Fiori Apps Reference Library GBX01HR5 605 My Overtime Requests view/ authorization

CVE-2024-6680 | witmy my-springsecurity-plus up to 2024-07-04 /api/dept/build params.dataScope sql injection (IAAH8A)

CVE-2023-47022 | NCR Terminal Handler 1.5.1 Script payload Privilege Escalation

CVE-2024-33024 | Qualcomm Snapdragon Auto up to XR2 5G Platform ML IE Length integer overflow