CVE-2025-4305 | kefaming mayi up to 1.3.9 File.php upload File unrestricted upload

Inserito da Angelo Barbosa | Mag 5, 2025 | CVE

A vulnerability has been found in kefaming mayi up to 1.3.9 and classified as critical. This vulnerability affects the function Upload of the file app/tools/controller/File.php. The manipulation of the argument File leads to unrestricted upload.

This vulnerability was named CVE-2025-4305. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-4305 | kefaming mayi up to 1.3.9 File.php upload File unrestricted upload

Post correlati

CVE-2025-0865 | debaat Media Category Management Plugin up to 2.3.3 on WordPress wp_mcm_handle_action_settings cross-site request forgery

CVE-2024-9986 | code-projects Blood Bank Management System 1.0 member_register.php fullname/username/password/email sql injection

CVE-2024-51836 | Teconce Wezido Plugin up to 1.2 on WordPress cross site scripting

CVE-2021-46757 | AMD Ryzen Embedded 5000 Virtual Address buffer overflow