CVE-2025-8852

Medium CVSS: 5.3

A vulnerability was identified in WuKongOpenSource WukongCRM 11.0. This affects an unknown part of the file /adminFile/upload of the component API Response Handler. The manipulation leads to information exposure through error message. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Vendor

5kcrm

Product

Wukongcrm

CWE

CWE-200

Yayın Tarihi

2025-08-11 14:15:27

Güncelleme

2025-09-16 18:45:36

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-200 Wukongcrm MEDIUM 5kcrm 2025

Referanslar

https://github.com/WuKongOpenSource/WukongCRM-11.0-JAVA/issues/26 https://github.com/WuKongOpenSource/WukongCRM-11.0-JAVA/issues/26#issue-3272864284 https://vuldb.com/?ctiid.319383 https://vuldb.com/?id.319383 https://vuldb.com/?submit.624693 https://github.com/WuKongOpenSource/WukongCRM-11.0-JAVA/issues/26

Benzer Kayıtlar

Medium

CVE-2026-2141

A security flaw has been discovered in WuKongOpenSource WukongCRM up to 11.3.3. This affects an unknown part of the file…

Medium

CVE-2025-60828

WukongCRM-9.0-JAVA was discovered to contain a fastjson deserialization vulnerability via the /OaExamine/setOaExamine in…

Medium

CVE-2025-5521

A vulnerability was found in WuKongOpenSource WukongCRM 9.0. It has been declared as problematic. Affected by this vulne…