Security Advisory

CVE-2025-2031

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-06 16:00:09

Last updated 2025-03-06 16:28:30

Assigner VulDB

State PUBLISHED

Description

A vulnerability classified as critical has been found in ChestnutCMS up to 1.5.2. This affects the function uploadFile of the file /dev-api/cms/file/upload. The manipulation of the argument file leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

← Browse all CVEs View on cve.org ↗