4 matches found
CVE-2025-27411
REDAXO is a PHP-based CMS. In Redaxo before 5.18.3, the mediapool/media page is vulnerable to arbitrary file upload. This vulnerability is fixed in 5.18.3...
CVE-2025-27411 REDAXO allows Arbitrary File Upload in the mediapool page
REDAXO is a PHP-based CMS. In Redaxo before 5.18.3, the mediapool/media page is vulnerable to arbitrary file upload. This vulnerability is fixed in 5.18.3...
CVE-2025-27411
CVE-2025-27411 concerns REDAXO, a PHP-based CMS. The vulnerability is in the mediapool/media page prior to version 5.18.3, where insufficient validation allows an arbitrary file upload. Documents consistently state that this could enable uploading and potentially executing malicious files, enabli...
CVE-2025-27411
creationtimestamp| type| source ---|---|--- 2025-03-05 09:04:20+00:00| published-proof-of-concept| https://github.com/redaxo/core/security/advisories/GHSA-wppf-gqj5-fc4f 2025-03-05 18:36:57+00:00| seen| https://t.me/cvedetector/19637 2025-03-06 22:33:44+00:00| seen|...