CVE-2025-22213 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Inadequate checks in the Media Manager allowed users with "edit" privileges to change file extension to arbitrary extension, including .php and other potentiall…
High CVSS: 7.1

CVE-2025-22213

Inadequate checks in the Media Manager allowed users with "edit" privileges to change file extension to arbitrary extension, including .php and other potentially executable extensions.
Vendor
-
Product
-
CWE
CWE-434
Yayın Tarihi
2025-03-11 17:16:24
Güncelleme
2025-03-11 17:16:24
Source Identifier
security@joomla.org
KEV Date Added
-

Kategoriler

CWE-434 HIGH 2025

Referanslar

https://developer.joomla.org/security-centre/961-20250301-core-malicious-file-uploads-via-media-managere-malicious-file-uploads-via-media-manager.html