CVE-2025-8729 | MigoXLab LMeterX 1.2.0 upload_service.py process_cert_files task_id path traversal (Issue 10)

Inserito da Angelo Barbosa | Ago 8, 2025 | CVE

A vulnerability has been found in MigoXLab LMeterX 1.2.0 and classified as critical. Affected by this vulnerability is the function process_cert_files of the file backend/service/upload_service.py. The manipulation of the argument task_id leads to path traversal.

This vulnerability is known as CVE-2025-8729. The attack can be launched remotely. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-8729 | MigoXLab LMeterX 1.2.0 upload_service.py process_cert_files task_id path traversal (Issue 10)

Post correlati

CVE-2024-1814 | Spectra Plugin up to 2.12.8 on WordPress Testimonial Block cross site scripting

CVE-2024-4753 | WP Secure Maintenance Plugin up to 1.6 on WordPress cross site scripting

CVE-2024-12468 | WP Datepicker Plugin up to 2.1.4 on WordPress cross site scripting

CVE-2025-7556 | code-projects Voting System 1.0 /admin/voters_edit.php ID sql injection