Lucene search
K

4 matches found

NVD
NVD
added 2025/03/12 1:15 a.m.19 views

CVE-2025-2219

A vulnerability was found in LoveCards LoveCardsV2 up to 2.3.2 and classified as critical. This issue affects some unknown processing of the file /api/upload/image. The manipulation of the argument file leads to unrestricted upload. The attack may be initiated remotely. The exploit has been...

9.8CVSS0.00613EPSS
Exploits0References3
CVE
CVE
added 2025/03/12 12:31 a.m.120 views

CVE-2025-2219

CVE-2025-2219 affects LoveCards LoveCardsV2 up to 2.3.2. The issue arises from how the parameter file in /api/upload/image is processed, allowing unrestricted image uploads. It is exploitable remotely over the network (no authentication required) and, per the descriptions, the exploit has been di...

9.8CVSS7.2AI score0.00613EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/12 12:31 a.m.11 views

CVE-2025-2219 LoveCards LoveCardsV2 image unrestricted upload

A vulnerability was found in LoveCards LoveCardsV2 up to 2.3.2 and classified as critical. This issue affects some unknown processing of the file /api/upload/image. The manipulation of the argument file leads to unrestricted upload. The attack may be initiated remotely. The exploit has been...

7.5CVSS7AI score0.00613EPSS
Exploits0References3
OSV
OSV
added 2025/03/12 12:31 a.m.6 views

CVE-2025-2219 LoveCards LoveCardsV2 image unrestricted upload

A vulnerability was found in LoveCards LoveCardsV2 up to 2.3.2 and classified as critical. This issue affects some unknown processing of the file /api/upload/image. The manipulation of the argument file leads to unrestricted upload. The attack may be initiated remotely. The exploit has been...

6.9CVSS5.5AI score0.00613EPSS
Exploits0References5
Rows per page
Query Builder