CVE-2025-46490

Name of the Vulnerable Software and Affected Versions Crossword Compiler Puzzles versions 5.2 and earlier

Description The issue allows for the unrestricted upload of files with dangerous types, enabling an attacker to upload a web shell to a web server. This can lead to further exploitation and potential control of the server.

Recommendations For versions 5.2 and earlier, consider restricting or disabling file upload functionality until a fix is available. As a temporary workaround, implement strict validation and sanitization of uploaded files to prevent the execution of malicious code.