CVE-2025-47642

Name of the Vulnerable Software and Affected Versions Ajar in5 Embed versions 3.1.5 and earlier

Description The issue allows for the unrestricted upload of files with dangerous types, enabling an attacker to upload a web shell to a web server. This can lead to further exploitation and potential control of the server.

Recommendations For Ajar in5 Embed versions 3.1.5 and earlier, consider restricting file uploads to only allow safe file types until a patch is available. As a temporary workaround, restrict access to the file upload feature to minimize the risk of exploitation. Avoid using the file upload feature in Ajar in5 Embed until the issue is resolved.