PT-2025-41229 · Unknown · Jhumanj Opnform
Balejin
·
Publicado
2025-10-08
·
Atualizado
2025-10-08
·
CVE-2025-11436
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
JhumanJ OpnForm versions up to 1.9.3
Description
A flaw exists in JhumanJ OpnForm up to version 1.9.3 related to an unrestricted upload issue stemming from manipulation of an unknown functionality within the
/answer file. This manipulation allows for remote exploitation. The exploit is publicly available.Recommendations
Implement patch 95c3e23856465d202e6aec10bdb6ee0688b5305a to correct this issue.
Exploit
Correção
Unrestricted File Upload
Improper Access Control
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Jhumanj Opnform