PT-2025-43162 · Cmssuperheroes · Clanora
Published
2025-10-22
·
Updated
2025-11-19
·
CVE-2025-48106
CVSS v3.1
10
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
CMSSuperHeroes Clanora versions prior to 1.3.1
Description
The software contains a flaw related to unrestricted file uploads, potentially allowing the use of malicious files. This could allow an attacker to upload files of dangerous types.
Recommendations
Update to version 1.3.1 or later.
Fix
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Clanora