CVE-2025-0465 in AquilaCMSinfo

Summary

by MITRE • 01/14/2025

A vulnerability was found in AquilaCMS 1.412.13. It has been rated as critical. Affected by this issue is some unknown functionality of the file /api/v2/categories. The manipulation of the argument PostBody.populate leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

01/14/2025

Moderation

accepted

Entry

VDB-291482

CPE

ready

CWE

CWE-502 (confirmed)

Exploit

Download

CVSS

7.3 (VulDB)

EPSS

0.00124

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-0465
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-0465
CVE Details	https://www.cvedetails.com/cve/CVE-2025-0465/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!