CVE-2025-11138 | mirweiye wenkucms up to 3.4 app/common/common.php createPathOne os command injection

Inserito da Angelo Barbosa | Set 28, 2025 | CVE

A vulnerability classified as critical was found in mirweiye wenkucms up to 3.4. This impacts the function createPathOne of the file app/common/common.php. The manipulation results in os command injection.

This vulnerability is cataloged as CVE-2025-11138. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-11138 | mirweiye wenkucms up to 3.4 app/common/common.php createPathOne os command injection

Post correlati

CVE-2024-0406 | mholt archiver 3.x TAR File path traversal

CVE-2024-31459 | Cacti up to 1.2.26 lib/plugin.php api_plugin_hook filename control

CVE-2024-41503 | Jetimob Plataforma Imobiliaria 20240627-0 Busca Ttulo cross site scripting

CVE-2024-0179 | AMD Ryzen Embedded 8000 AmdCpmDisplayFeatureSMM input validation