5 matches found
CVE-2025-34045
creationtimestamp| type| source ---|---|--- 2025-06-26 16:51:50+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19632 2025-06-27 21:02:22+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lsmjz7x5jv24 2025-10-31 21:02:50+00:00| seen|...
CVE-2025-34045
A path traversal vulnerability exists in WeiPHP 5.0, an open source WeChat public account platform development framework by Shenzhen Yuanmengyun Technology Co., Ltd. The flaw occurs in the picUrl parameter of the /public/index.php/material/Material/downloadimgage endpoint, where insufficient inpu...
CVE-2025-34045 WeiPHP Path Traversal Arbitrary File Read
A path traversal vulnerability exists in WeiPHP 5.0, an open source WeChat public account platform development framework by Shenzhen Yuanmengyun Technology Co., Ltd. The flaw occurs in the picUrl parameter of the /public/index.php/material/Material/downloadimgage endpoint, where insufficient inpu...
CVE-2025-34045
WeiPHP 5.0 contains a path traversal vulnerability due to insufficient validation of the picUrl parameter in /public/index.php/material/Material/_download_imgage. Unauthenticated remote attackers can read arbitrary files on the server, potentially exposing sensitive data such as configuration fil...
VulnCheck KEV: CVE-2025-34045
A path traversal vulnerability exists in WeiPHP 5.0, an open source WeChat public account platform development framework by Shenzhen Yuanmengyun Technology Co., Ltd. The flaw occurs in the picUrl parameter of the /public/index.php/material/Material/downloadimgage endpoint, where insufficient inpu...