Lucene search
K

CVE-2025-51820

🗓️ 04 Aug 2025 05:01:56Reported by candidateType 
cve
 cve
👁 7 Views🌐 WEB

CVE-2025-51820 is evidenced by connected data describing a Remote Code Execution in the Online Shopping Portal Project v1.0. The affected component is /shopping/admin/insert-product.php, with the root cause being insufficient validation/sanitizati...

Related
Refs
Paths
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for CVE-2025-51820
4 Aug 202504:57
githubexploit
Circl
CVE-2025-51820
4 Aug 202505:01
circl
ParameterPositionPathDescriptionCWE
filerequest body/shopping/admin/insert-product.phpVulnerable file upload endpoint enabling arbitrary command execution via uploaded payload (RCE).CWE-77
payloadrequest body/shopping/admin/insert-product.phpVulnerable file upload endpoint enabling arbitrary command execution via uploaded payload (RCE).CWE-77
cmdquery param/columbans/uploads/shell.php?cmd=whoamiUploaded PHP shell accessible via URL executing commands through the cmd parameter (demonstrates RCE).CWE-77

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Aug 2025 05:01Current
7