CVE-2025-69770

Publication date

2026-02-13 00:00:00

Family

mitre

State

PUBLISHED

Description

A zip slip vulnerability in the /DesignTools/SkinList.aspx endpoint of MojoPortal CMS v2.9.0.1 allows attackers to execute arbitrary commands via uploading a crafted zip file.