CVE-2025-66625

Name of the Vulnerable Software and Affected Versions Umbraco versions 10.0.0 through 13.12.0

Description Umbraco, an ASP.NET CMS, experiences an issue related to the unsafe handling and deletion of temporary files during the dictionary upload process. An attacker with backoffice access can leverage predictable requests to temporary file paths to enumerate the existence of arbitrary files on the server’s filesystem by observing differing error responses (HTTP 500 or 404). This does not permit reading or writing file contents. In specific configurations, incomplete cleanup of temporary upload files may reveal the NTLM hash of the Windows account running the Umbraco application.

Recommendations Update to Umbraco version 13.12.1.