CVE-2025-54425 | Umbraco CMS up to 13.9.2/15.4.3/16.1.0 Content Delivery API information disclosure

Inserito da Angelo Barbosa | Lug 30, 2025 | CVE

A vulnerability classified as problematic was found in Umbraco CMS up to 13.9.2/15.4.3/16.1.0. This vulnerability affects unknown code of the component Content Delivery API. The manipulation leads to information disclosure.

This vulnerability was named CVE-2025-54425. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-54425 | Umbraco CMS up to 13.9.2/15.4.3/16.1.0 Content Delivery API information disclosure

Post correlati

CVE-2024-10114 | Social Login Plugin up to 2.7.7 on WordPress improper authentication

CVE-2024-12275 | Canvasflow Plugin up to 1.5.5 on WordPress cross site scripting

CVE-2022-27562 | HCL Domino Volt File Type Filter Policy unrestricted upload (KB0120722)

CVE-2023-52149 | Wow-Company Floating Button Plugin up to 6.0 on WordPress cross-site request forgery