PT-2025-29425 · Unknown · Zavy86 Wikidocs
Matans
·
Published
2025-07-14
·
Updated
2025-07-14
·
CVE-2025-7575
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:L/Au:M/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Zavy86 WikiDocs versions through 1.0.77
Description:
A critical issue exists in Zavy86 WikiDocs that allows for path traversal. The vulnerability is located in the
image drop upload ajax/image delete ajax function within the submit.php file. The attack can be initiated remotely.Recommendations:
Upgrade to version 1.0.78.
Exploit
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Zavy86 Wikidocs