CVE-2025-15197 | code-projects/anirbandutta9 Content Management System/News-Buzz 1.0 /admin/editposts.php image unrestricted upload

Inserito da Angelo Barbosa | Dic 28, 2025 | CVE

A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been rated as critical. This vulnerability affects unknown code of the file /admin/editposts.php. Performing manipulation of the argument image results in unrestricted upload.

This vulnerability was named CVE-2025-15197. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-15197 | code-projects/anirbandutta9 Content Management System/News-Buzz 1.0 /admin/editposts.php image unrestricted upload

Post correlati

CVE-2025-8470 | SourceCodester Online Hotel Reservation System 1.0 /admin/deleteroom.php ID sql injection

CVE-2025-1548 | iteachyou Dreamer CMS 4.1.3 /admin/archives/edit editorValue/answer/content cross site scripting

CVE-2025-1066 | OpenPLC V3 unrestricted upload

CVE-2024-11226 | FireCask Like & Share Button Plugin up to 1.2 on WordPress width cross site scripting