CVE-2025-15250 | 08CMS Novel System up to 3.4 Template admina/mtpls.inc.php code injection (ID3DEM)

Inserito da Angelo Barbosa | Dic 29, 2025 | CVE

A vulnerability was found in 08CMS Novel System up to 3.4. It has been rated as critical. This issue affects some unknown processing of the file admina/mtpls.inc.php of the component Template Handler. The manipulation leads to code injection.

This vulnerability is traded as CVE-2025-15250. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-15250 | 08CMS Novel System up to 3.4 Template admina/mtpls.inc.php code injection (ID3DEM)

Post correlati

CVE-2025-41415 | AVEVA PI Integrator for Business Analytics up to 2020 R2 SP1 insertion of sensitive information into sent data (icsa-25-224-04)

CVE-2024-11447 | peepso Community Plugin up to 6.4.6.2 on WordPress filter cross site scripting

CVE-2025-10365 | Evertz 3080ipx-10G Web Management Interface improper authentication

CVE-2025-9815 | alaneuler batteryKid up to 2.1 on macOS NSXPCListener PrivilegeHelper.swift missing authentication