ГлавнаяУязвимости → CVE-2025-29281
8.8высокая

CVE-2025-29281

Описание

In PerfreeBlog version 4.0.11, regular users can exploit the arbitrary file upload vulnerability in the attach component to upload arbitrary files and execute code within them.

Затрагиваемое ПО
Perfree Perfreeblog
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/Cray0nLee/CVE/issues/2