CVE-2025-29411 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An arbitrary file upload vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary code via up…
Critical CVSS: 9.8

CVE-2025-29411

An arbitrary file upload vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
Vendor
Martmbithi
Product
Ibanking
CWE
CWE-434
Yayın Tarihi
2025-03-20 15:15:46
Güncelleme
2025-03-28 19:38:32
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-434 Ibanking CRITICAL Martmbithi 2025

Referanslar

https://github.com/MartMbithi/iBanking/issues/12 https://www.simonjuguna.com/cve-2025-29411-authenticated-remote-code-execution-rce-via-arbitrary-file-upload/ https://www.simonjuguna.com/cve-2025-29411-authenticated-remote-code-execution-rce-via-arbitrary-file-upload/