CVE-2025-54962 | thiagoralves OpenPLC v3 up to 9cd8f1b53a50f9d38708096bfc72bcbb1ef47343 /edit-user unrestricted upload

Inserito da Angelo Barbosa | Ago 4, 2025 | CVE

A vulnerability classified as critical has been found in thiagoralves OpenPLC v3 up to 9cd8f1b53a50f9d38708096bfc72bcbb1ef47343. Affected is an unknown function of the file /edit-user. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-54962. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-54962 | thiagoralves OpenPLC v3 up to 9cd8f1b53a50f9d38708096bfc72bcbb1ef47343 /edit-user unrestricted upload

Post correlati

CVE-2024-11840 | RapidLoad Plugin up to 2.4.2 on WordPress Setting sql injection

CVE-2024-52301 | Laravel Framework up to 11.31.0 Query register_argc_argv argument injection (GHSA-gv7v-rgg6-548h)

CVE-2024-8734 | lucasstad Lucas String Replace Plugin up to 2.0.5 on WordPress add_query_arg cross site scripting

CVE-2023-50885 | Store Locator Plugin up to 1.4.14 on WordPress path traversal