CVE-2025-65844 | EverShop 2.0.1 /api/images unrestricted upload (Issue 819)

December 2, 2025 Yanac

A vulnerability labeled as critical has been found in EverShop 2.0.1. This vulnerability affects unknown code of the file /api/images. Such manipulation leads to unrestricted upload.

This vulnerability is documented as CVE-2025-65844. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2025-65186 | Grav CMS 1.7.49 Page Editor cross site scripting
CVE-2025-52622 | HCL BigFix SaaS Remediate insecure default initialization of resource (KB0127171)