Количество 2
Количество 2
CVE-2025-10353
File upload leading to remote code execution (RCE) in the “melis-cms-slider” module of Melis Technology's Melis Platform. This vulnerability allows an attacker to upload a malicious file via a POST request to '/melis/MelisCmsSlider/MelisCmsSliderDetails/saveDetailsForm' using the 'mcsdetail_img' parameter.
GHSA-chw4-gjvw-3gxc
Melis Platform CMS Unauthenticated File Upload Leading to RCE
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-10353 File upload leading to remote code execution (RCE) in the “melis-cms-slider” module of Melis Technology's Melis Platform. This vulnerability allows an attacker to upload a malicious file via a POST request to '/melis/MelisCmsSlider/MelisCmsSliderDetails/saveDetailsForm' using the 'mcsdetail_img' parameter. | 6% Низкий | 4 месяца назад | |
| GHSA-chw4-gjvw-3gxc Melis Platform CMS Unauthenticated File Upload Leading to RCE | 6% Низкий | 4 месяца назад |
Уязвимостей на страницу