Security Advisory

CVE-2025-1890

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-03 23:31:04

Last updated 2025-03-04 15:18:54

Assigner VulDB

State PUBLISHED

Description

A vulnerability has been found in shishuocms 1.1 and classified as critical. This vulnerability affects the function handleRequest of the file src/main/java/com/shishuo/cms/action/manage/ManageUpLoadAction.java. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

← Browse all CVEs View on cve.org ↗