CVE-2025-0973

CVE-2025-0973 describes a path traversal vulnerability in CmsEasy 7.7.7.9. The flaw affects the backAll_action function in lib/admin/database_admin.php called via /index.php?case=database&act=backAll&admin_dir=admin&site=default. Manipulating the argument select[] enables path traversal. The issu...