PT-2026-6602 · Unknown · Chestnutcms

Publicado

2026-02-05

Atualizado

2026-02-06

CVE-2025-70073

CVSS v3.1

7.2

Alta

Vetor

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ChestnutCMS versions prior to 1.5.9

Description An issue allows a remote attacker to execute arbitrary code via the template creation function.

Recommendations Update to version 1.5.9 or later.

Correção

RCE

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2025-70073

Chestnutcms