CVE-2025-58048 | Paymenter up to 1.2.10 /storage/ unrestricted upload (GHSA-5pm9-r2m8-rcmj)

August 28, 2025 Yanac

A vulnerability, which was classified as critical, was found in Paymenter up to 1.2.10. This impacts an unknown function of the file /storage/. The manipulation results in unrestricted upload.

This vulnerability is reported as CVE-2025-58048. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More

CVE-2025-58335 | JetBrains Junie up to 252.284.65 search_project unsafe action warning
Microsoft releases Windows Backup for Organizations to ease migration of user settings to Windows 11