ГлавнаяУязвимости → CVE-2025-57516
8.2высокая

CVE-2025-57516

Описание

OS Command injection vulnerability in PublicCMS PublicCMS-V5.202506.a, and PublicCMS-V5.202506.b allowing attackers to execute arbitrary commands via crafted DATABASE, USERNAME, or PASSWORD variables to the backupDB.bat file.

Затрагиваемое ПО
Publiccms Publiccms
CVSS
Балл8.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Источники
https://github.com/sanluan/PublicCMS/issues/97