CVE-2025-28168 | Outsystems Multiple File Upload up to 3.0.x File Extension unrestricted upload

Inserito da Angelo Barbosa | Mag 5, 2025 | CVE

A vulnerability was found in Outsystems Multiple File Upload up to 3.0.x. It has been rated as critical. This issue affects some unknown processing of the component File Extension Handler. The manipulation leads to unrestricted upload.

The identification of this vulnerability is CVE-2025-28168. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-28168 | Outsystems Multiple File Upload up to 3.0.x File Extension unrestricted upload

Post correlati

CVE-2024-21218 | Oracle MySQL Cluster/MySQL Server up to 7.5.35/7.6.31/8.0.39/8.4.2/9.0.1 InnoDB denial of service

CVE-2024-6014 | itsourcecode Document Management System 1.0 edithis.php id sql injection

CVE-2024-6094 | WP ULike Plugin up to 4.7.0 on WordPress Setting cross site scripting

CVE-2024-37779 | WoodWing Elvis DAM 6.98.1 Apache Ant Script Remote Code Execution