CVE-2025-6001 in VirtueMart
Sumário
de MITRE • 11/06/2025
A Cross-Site Request Forgery (CSRF) vulnerability exists in the product image upload function of VirtueMart that bypasses the CSRF protection token. An attacker is able to craft a special CSRF request which will allow unrestricted file upload into the VirtueMart media manager.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.