Lucene search
+L

Arbitrary File Upload

🗓️ 06 May 2025 03:05:29Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode
🔗 sca.analysiscenter.veracode.com👁 6 Views

Vulnerability in net.mingsoft MCMS allows arbitrary file upload and potential remote code execution.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
attackerkb
CVE-2025-29287
21 Apr 202515:15
attackerkb
circl
CVE-2025-29287
21 Apr 202515:03
circl
cnnvd
MingSoft MCMS 安全漏洞
21 Apr 202500:00
cnnvd
cve
CVE-2025-29287
21 Apr 202500:00
cve
cvelist
CVE-2025-29287
21 Apr 202500:00
cvelist
euvd
EUVD-2025-12370
3 Oct 202520:07
euvd
github
MCMS allows arbitrary file uploads in the ueditor component
21 Apr 202515:31
github
nvd
CVE-2025-29287
21 Apr 202515:15
nvd
osv
CVE-2025-29287
21 Apr 202515:15
osv
osv
GHSA-3922-2R6R-R4FV MCMS allows arbitrary file uploads in the ueditor component
21 Apr 202515:31
osv
Rows per page
Vulners
Node
OR
ms-mcmsms-mcmsRange4.6.3-SNAPSHOTS5.4.3java
ms-mcmsms-mcmsMatch4.6.3-snapshotsjava
ms-mcmsms-mcmsMatch4.6.5java
ms-mcmsms-mcmsMatch4.7.1java
ms-mcmsms-mcmsMatch4.7.2java
ms-mcmsms-mcmsMatch5.0.0java
ms-mcmsms-mcmsMatch5.0.1java
ms-mcmsms-mcmsMatch5.1java
ms-mcmsms-mcmsMatch5.2java
ms-mcmsms-mcmsMatch5.2.0java
ms-mcmsms-mcmsMatch5.2.0.releasejava
ms-mcmsms-mcmsMatch5.2.1java
ms-mcmsms-mcmsMatch5.2.10java
ms-mcmsms-mcmsMatch5.2.11java
ms-mcmsms-mcmsMatch5.2.2java
ms-mcmsms-mcmsMatch5.2.3java
ms-mcmsms-mcmsMatch5.2.4java
ms-mcmsms-mcmsMatch5.2.5java
ms-mcmsms-mcmsMatch5.2.6java
ms-mcmsms-mcmsMatch5.2.7java
ms-mcmsms-mcmsMatch5.2.8java
ms-mcmsms-mcmsMatch5.2.9java
ms-mcmsms-mcmsMatch5.3.0java
ms-mcmsms-mcmsMatch5.3.1java
ms-mcmsms-mcmsMatch5.3.2java
ms-mcmsms-mcmsMatch5.3.3java
ms-mcmsms-mcmsMatch5.3.4java
ms-mcmsms-mcmsMatch5.3.5java
ms-mcmsms-mcmsMatch5.3.6java
ms-mcmsms-mcmsMatch5.4.0java
ms-mcmsms-mcmsMatch5.4.1java
ms-mcmsms-mcmsMatch5.4.2java

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

13 Dec 2025 04:20Current
7.4High risk
Vulners AI Score7.4
CVSS 3.19.8
EPSS0.00675
SSVC
6