CVE-2025-6001 in VirtueMartinformação

Sumário

de MITRE • 11/06/2025

A Cross-Site Request Forgery (CSRF) vulnerability exists in the product image upload function of VirtueMart that bypasses the CSRF protection token. An attacker is able to craft a special CSRF request which will allow unrestricted file upload into the VirtueMart media manager.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsável

BLSOPS

Reservar

11/06/2025

Divulgação

11/06/2025

Moderação

aceite

Entrada

VDB-312316

CPE

pronto

EPSS

0.00199

KEV

não

Atividades

muito baixo

Fontes

Do you want to use VulDB in your project?

Use the official API to access entries easily!