CVE-2025-1165 in ERPالمعلومات

الملخص

بحسب MITRE • 11/02/2025

A vulnerability, which was classified as critical, was found in Lumsoft ERP 8. Affected is the function DoUpload/DoWebUpload of the file /Api/FileUploadApi.ashx. The manipulation of the argument file leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

مسؤول

VulDB

إفشاء

11/02/2025

الاعتدال

تمت الموافقة

إدخال

VDB-295068

استغلال

تحميل

EPSS

0.00449

KEV

لا

النشاطات

منخفض جدًا

المصادر

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!