CVE-2025-10353 | Melis Platform up to 5.3.0 CMS Slider saveDetailsForm mcsdetail_img path equivalence

A vulnerability described as critical has been identified in Melis Platform up to 5.3.0. Affected is an unknown function of the file /melis/MelisCmsSlider/MelisCmsSliderDetails/saveDetailsForm of the component CMS Slider Module. The manipulation of the argument mcsdetail_img results in path equivalence: ‘filename….’ (multiple trailing dot).

This vulnerability is reported as CVE-2025-10353. The attack can be launched remotely. No exploit exists.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More