Количество 2
Количество 2
CVE-2025-55743
UnoPim is an open-source Product Information Management (PIM) system built on the Laravel framework. Before 0.2.1, the image upload at the user creation feature performs only client side file type validation. A user can capture the request by uploading an image, capture the request through a Proxy like Burp suite. Make changes to the file extension and content. The vulnerability is fixed in 0.2.1.
GHSA-v22v-xwh7-2vrm
UnoPim vulnerable to remote code execution through Arbitrary File upload
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-55743 UnoPim is an open-source Product Information Management (PIM) system built on the Laravel framework. Before 0.2.1, the image upload at the user creation feature performs only client side file type validation. A user can capture the request by uploading an image, capture the request through a Proxy like Burp suite. Make changes to the file extension and content. The vulnerability is fixed in 0.2.1. | CVSS3: 8.8 | 0% Низкий | 6 месяцев назад |
| GHSA-v22v-xwh7-2vrm UnoPim vulnerable to remote code execution through Arbitrary File upload | 0% Низкий | 6 месяцев назад |
Уязвимостей на страницу