CVE-2025-8753 | linlinjava litemall up to 1.8.0 File /admin/storage/delete key path traversal (Issue 564)

Inserito da Angelo Barbosa | Ago 8, 2025 | CVE

A vulnerability, which was classified as critical, has been found in linlinjava litemall up to 1.8.0. Affected by this issue is the function delete of the file /admin/storage/delete of the component File Handler. The manipulation of the argument key leads to path traversal.

This vulnerability is handled as CVE-2025-8753. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-8753 | linlinjava litemall up to 1.8.0 File /admin/storage/delete key path traversal (Issue 564)

Post correlati

CVE-2023-34194 | TinyXML up to 2.6.2 XML Document tinyxmlparser.cpp TiXmlDeclaration::Parse assertion

CVE-2024-23170 | mbed TLS up to 2.28.6/3.5.1 timing discrepancy

CVE-2025-7020 | BYD DiLink OS 13.1.32.2307211.1 Log Dump reliance on security through obscurity

CVE-2023-51482 | EazyPlugins Eazy Plugin Manager up to 4.1.2 on WordPress ACL improper authentication