CVE-2025-15129 | ChenJinchuang Lin-CMS-TP5 up to 0.3.3 File Upload LocalUploader.php upload code injection

Uncategorized
Yanac

A vulnerability classified as critical was found in ChenJinchuang Lin-CMS-TP5 up to 0.3.3. This vulnerability affects the function Upload of the file application/lib/file/LocalUploader.php of the component File Upload Handler. Executing manipulation of the argument File can lead to code injection.

This vulnerability is handled as CVE-2025-15129. The attack can be executed remotely. Additionally, an exploit exists.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More