CVE-2025-15151

CVSS v3.1

3.7

Low

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions TaleLin Lin-CMS versions up to 0.6.0

Description A security issue exists in TaleLin Lin-CMS. The issue involves the manipulation of the username/password arguments, potentially leading to exposure of passwords within the configuration file located at '/tests/config.py' in the Tests Folder component. The attack can be carried out remotely, but requires a high level of complexity and is considered difficult to exploit. The exploit has been publicly disclosed.

Recommendations Versions prior to 0.6.0 should be updated.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255CWE-260

Related Identifiers

CVE-2025-15151

Affected Products

Talelin Lin-Cms

CVE-2025-15151

Weakness Enumeration

Related Identifiers

Affected Products

References · 8