CVE-2025-10116 | SiempreCMS up to 1.3.6 file_upload.php unrestricted upload

Inserito da Angelo Barbosa | Set 8, 2025 | CVE

A vulnerability was found in SiempreCMS up to 1.3.6. It has been declared as critical. This vulnerability affects unknown code of the file /docs/admin/file_upload.php. Such manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-10116. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-10116 | SiempreCMS up to 1.3.6 file_upload.php unrestricted upload

Post correlati

CVE-2024-12572 | Hello in All Languages Plugin up to 1.0.6 on WordPress cross-site request forgery

CVE-2024-1814 | Spectra Plugin up to 2.12.8 on WordPress Testimonial Block cross site scripting

CVE-2024-35629 | Wow-Company Easy Digital Downloads Plugin up to 1.0.2 on WordPress filename control

CVE-2024-34091 | Archer Platform prior 2024.04 Trusted Application Data Store cross site scripting