CVE-2025-3585

Medium CVSS: 5.3

A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the file /upload/ of the component JSP Parser. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Vendor

Westboy

Product

Cicadascms

CWE

CWE-284

Yayın Tarihi

2025-04-14 18:15:29

Güncelleme

2025-05-21 20:01:00

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-284 Cicadascms MEDIUM Westboy 2025

Referanslar

https://github.com/Bae-ke/cve/issues/1 https://vuldb.com/?ctiid.304641 https://vuldb.com/?id.304641 https://vuldb.com/?submit.549981 https://github.com/Bae-ke/cve/issues/1

Benzer Kayıtlar

Medium

CVE-2025-11289

A vulnerability was determined in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. The impacted elemen…

Medium

CVE-2025-11069

A vulnerability was determined in westboy CicadasCMS 1.0. Affected by this issue is some unknown functionality of the fi…

Medium

CVE-2025-11068

A vulnerability was found in westboy CicadasCMS 1.0. Affected by this vulnerability is an unknown functionality of the f…

Medium

CVE-2025-3816

A vulnerability classified as critical was found in westboy CicadasCMS 2.0. This vulnerability affects unknown code of t…

Medium

CVE-2025-2625

A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the fil…

Medium

CVE-2025-2624

A vulnerability was found in westboy CicadasCMS 1.0. It has been rated as critical. Affected by this issue is some unkno…