Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/10/28 3:59 p.m.3 views

CVE-2025-12291

A vulnerability was found in ashymuzuro Full-Ecommece-Website and Muzuro Ecommerce System up to 1.1.0. This affects an unknown part of the file /admin/index.php?addproduct of the component Add Product Page. The manipulation results in unrestricted upload. The attack may be performed from remote...

5.8CVSS6.2AI score0.00276EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/27 3:32 p.m.2 views

CVE-2025-12291 ashymuzuro Full-Ecommece-Website/Muzuro Ecommerce System Add Product index.php unrestricted upload

A vulnerability was found in ashymuzuro Full-Ecommece-Website and Muzuro Ecommerce System up to 1.1.0. This affects an unknown part of the file /admin/index.php?addproduct of the component Add Product Page. The manipulation results in unrestricted upload. The attack may be performed from remote...

5.8CVSS6AI score0.00276EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/27 3:32 p.m.9 views

CVE-2025-12291 ashymuzuro Full-Ecommece-Website/Muzuro Ecommerce System Add Product index.php unrestricted upload

A vulnerability was found in ashymuzuro Full-Ecommece-Website and Muzuro Ecommerce System up to 1.1.0. This affects an unknown part of the file /admin/index.php?addproduct of the component Add Product Page. The manipulation results in unrestricted upload. The attack may be performed from remote...

5.8CVSS0.00276EPSS
Exploits0References4
CVE
CVE
added 2025/10/27 3:32 p.m.12 views

CVE-2025-12291

Summary (CVE-2025-12291) ashymuzuro’s Full-Ecommece-Website and Muzuro Ecommerce System (up to 1.1.0) contain an unrestricted upload flaw in the Add Product Page at /admin/index.php?add_product. The root cause is an input/validation issue that allows remote attackers to upload arbitrary files, en...

5.8CVSS4.6AI score0.00276EPSS
Exploits0References4
Rows per page
Query Builder