CVE-2025-61506 | MediaCrush up to 1.0.1 /upload improper authentication

Inserito da Angelo Barbosa | Feb 3, 2026 | CVE

A vulnerability was found in MediaCrush up to 1.0.1. It has been declared as critical. Affected is an unknown function of the file /upload. The manipulation results in improper authentication.

This vulnerability is reported as CVE-2025-61506. The attack can be launched remotely. No exploit exists.

CVE-2025-61506 | MediaCrush up to 1.0.1 /upload improper authentication

Post correlati

CVE-2025-54655 | Huawei HarmonyOS 5.0.1/5.0.2 Virtualization Base Module toctou

CVE-2025-56266 | Avigilon ACM 7.10.0.20 Header Host injection

CVE-2025-9796 | thinkgem JeeSite up to 5.12.1 EncodeUtils.java decodeUrl2 cross site scripting (Issue 33)

CVE-2024-48758 | dingfanzu CMS 1.0 doAdminAction.php addPro cross-site request forgery