PT-2025-29425 · Unknown · Zavy86 Wikidocs
Matans
·
Publicado
2025-07-14
·
Atualizado
2025-07-14
·
CVE-2025-7575
CVSS v2.0
5.8
Média
| Vetor | AV:N/AC:L/Au:M/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Zavy86 WikiDocs versions through 1.0.77
Description:
A critical issue exists in Zavy86 WikiDocs that allows for path traversal. The vulnerability is located in the
image drop upload ajax/image delete ajax function within the submit.php file. The attack can be initiated remotely.Recommendations:
Upgrade to version 1.0.78.
Exploit
Correção
Path traversal
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Zavy86 Wikidocs