CVE-2025-11138 | mirweiye wenkucms up to 3.4 app/common/common.php createPathOne os command injection

A vulnerability classified as critical was found in mirweiye wenkucms up to 3.4. This impacts the function createPathOne of the file app/common/common.php. The manipulation results in os command injection.

This vulnerability is cataloged as CVE-2025-11138. The attack may be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More