CVE-2025-2031 | ChestnutCMS up to 1.5.2 /dev-api/cms/file/upload uploadFile file unrestricted upload

A vulnerability classified as critical has been found in ChestnutCMS up to 1.5.2. This affects the function uploadFile of the file /dev-api/cms/file/upload. The manipulation of the argument file leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2025-2031. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More