CVE-2025-5714 | SoluçõesCoop iSoluçõesWEB up to 20250516 Profile Information Update /sys/up.upload.php nomeArquivo path traversal

Inserito da Angelo Barbosa | Giu 5, 2025 | CVE

A vulnerability was found in SoluçõesCoop iSoluçõesWEB up to 20250516. It has been classified as problematic. This affects an unknown part of the file /sys/up.upload.php of the component Profile Information Update. The manipulation of the argument nomeArquivo leads to path traversal.

This vulnerability is uniquely identified as CVE-2025-5714. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2025-5714 | SoluçõesCoop iSoluçõesWEB up to 20250516 Profile Information Update /sys/up.upload.php nomeArquivo path traversal

Post correlati

CVE-2024-11754 | Booking System Trafft Plugin up to 1.0.6 on WordPress cross site scripting

CVE-2025-23589 | ContentOptin Lite Plugin up to 1.1 on WordPress cross site scripting

CVE-2024-2249 | LA-Studio Element Kit for Elementor Plugin up to 1.3.7.4 on WordPress cross site scripting

CVE-2024-48708 | Collabtive 3.1 tasklist.php name cross site scripting