CVE-2025-54425 | Umbraco CMS up to 13.9.2/15.4.3/16.1.0 Content Delivery API information disclosure

Inserito da Angelo Barbosa | Lug 30, 2025 | CVE

A vulnerability classified as problematic was found in Umbraco CMS up to 13.9.2/15.4.3/16.1.0. This vulnerability affects unknown code of the component Content Delivery API. The manipulation leads to information disclosure.

This vulnerability was named CVE-2025-54425. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-54425 | Umbraco CMS up to 13.9.2/15.4.3/16.1.0 Content Delivery API information disclosure

Post correlati

CVE-2024-26273 | Liferay Portal/DXP cross-site request forgery

CVE-2024-23181 | appleple A-Blog CMS up to 2.8.x/2.10.49/2.11.57/3.0.28/3.1.6 cross site scripting

CVE-2024-22475 | Printer/Scanner Web Based Management cross-site request forgery

CVE-2024-7812 | SourceCodester Best House Rental Management System 1.0 POST Parameter ajax.php lastname cross site scripting