CVE-2025-15458 | bg5sbk MiniCMS up to 1.8 Article /mc-admin/post-edit.php improper authentication

Inserito da Angelo Barbosa | Gen 4, 2026 | CVE

A vulnerability was found in bg5sbk MiniCMS up to 1.8 and classified as critical. This affects an unknown function of the file /mc-admin/post-edit.php of the component Article Handler. Executing a manipulation can lead to improper authentication.

This vulnerability is registered as CVE-2025-15458. It is possible to launch the attack remotely. Furthermore, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-15458 | bg5sbk MiniCMS up to 1.8 Article /mc-admin/post-edit.php improper authentication

Post correlati

CVE-2024-6016 | itsourcecode Online Laundry Management System 1.0 admin_class.php id sql injection

CVE-2024-5292 | D-Link Network Assistant 4.0.0.21 DNACore Service uncontrolled search path (ZDI-24-443)

CVE-2024-13674 | berginformatik Cosmic Blocks Content Editor Blocks Collection Plugin cross site scripting

CVE-2024-53504 | Siyuan 3.1.11 /searchHistory notebook sql injection (Issue 13058)