Lucene search
K

4 matches found

NVD
NVD
added 2025/02/16 9:15 a.m.56 views

CVE-2025-1336

A vulnerability has been found in CmsEasy 7.7.7.9 and classified as problematic. Affected by this vulnerability is the function deleteimgaction in the library lib/admin/imageadmin.php. The manipulation of the argument imgname leads to path traversal. The attack can be launched remotely. The explo...

8.1CVSS0.00951EPSS
Exploits1References4
Circl
Circl
added 2025/02/16 9:3 a.m.29 views

CVE-2025-1336

creationtimestamp| type| source ---|---|--- 2025-02-16 09:03:53+00:00| seen| https://infosec.exchange/users/cve/statuses/114012758525808669 2025-02-16 09:15:19+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3libvge6hnm2p 2025-02-16 10:12:54+00:00|...

8.1CVSS4.5AI score0.00951EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/02/16 9:0 a.m.13 views

CVE-2025-1336 CmsEasy image_admin.php deleteimg_action path traversal

A vulnerability has been found in CmsEasy 7.7.7.9 and classified as problematic. Affected by this vulnerability is the function deleteimgaction in the library lib/admin/imageadmin.php. The manipulation of the argument imgname leads to path traversal. The attack can be launched remotely. The explo...

5.3CVSS7AI score0.00951EPSS
Exploits1References4
CVE
CVE
added 2025/02/16 9:0 a.m.66 views

CVE-2025-1336

CmsEasy 7.7.7.9 is affected by a path traversal vulnerability in deleteimg_action (lib/admin/image_admin.php) caused by unsafely handling the imgname parameter. A remote attacker could exploit this, and public exploits have been disclosed. Multiple sources confirm remote access and public disclos...

8.1CVSS4.7AI score0.00951EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder