CVE-2025-1791 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability has been found in Zorlan SkyCaiji 2.9 and classified as critical. This vulnerability affects the function fileAction of the file vendor/skycaiji…
Medium CVSS: 5.3

CVE-2025-1791

A vulnerability has been found in Zorlan SkyCaiji 2.9 and classified as critical. This vulnerability affects the function fileAction of the file vendor/skycaiji/app/admin/controller/Tool.php. The manipulation of the argument save_data leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Vendor
Skycaiji
Product
Skycaiji
CWE
CWE-284
Yayın Tarihi
2025-03-01 14:15:34
Güncelleme
2025-06-12 20:26:54
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-284 Skycaiji MEDIUM Skycaiji 2025

Referanslar

https://github.com/sheratan4/cve/issues/5 https://vuldb.com/?ctiid.298012 https://vuldb.com/?id.298012 https://vuldb.com/?submit.502648 https://github.com/sheratan4/cve/issues/5