CVE-2025-65112 | ricardoboss PubNet up to 1.1.2 /api/storage/upload author-id authorization (GHSA-pg82-fqrg-q6j5)

A vulnerability was found in ricardoboss PubNet up to 1.1.2. It has been classified as critical. The affected element is an unknown function of the file /api/storage/upload. The manipulation of the argument author-id leads to missing authorization.

This vulnerability is traded as CVE-2025-65112. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More