CVE-2025-29058
Summary: CVE-2025-29058 concerns Qimou CMS v3.34.0 where the upgrade.php component enables remote code execution by a malicious actor, as supported by multiple sources in the connected set. What is affected: Qimou CMS version 3.34.0, upgrade.php component. Root cause: insecure handling in upgrade...