CVE-2025-57516

Publication date

2025-09-29 00:00:00

Family

mitre

State

PUBLISHED

Description

OS Command injection vulnerability in PublicCMS PublicCMS-V5.202506.a, and PublicCMS-V5.202506.b allowing attackers to execute arbitrary commands via crafted DATABASE, USERNAME, or PASSWORD variables to the backupDB.bat file.