Security Advisory

CVE-2025-11138

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-29 03:02:06

Last updated 2025-09-29 12:14:36

Assigner VulDB

State PUBLISHED

Description

A vulnerability was found in mirweiye wenkucms up to 3.4. This impacts the function createPathOne of the file app/common/common.php. The manipulation results in os command injection. The attack may be launched remotely. The exploit has been made public and could be used.

← Browse all CVEs View on cve.org ↗