Home

Description

EN DE

A flaw has been found in YiFang CMS up to 2.0.2. The impacted element is the function webUploader of the file app/app/controller/File.php of the component Backend. Executing manipulation of the argument uploadpath can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be used.

Es wurde eine Schwachstelle in YiFang CMS up to 2.0.2 entdeckt. Betroffen davon ist die Funktion webUploader der Datei app/app/controller/File.php der Komponente Backend. Die Bearbeitung des Arguments uploadpath verursacht unrestricted upload. Umgesetzt werden kann der Angriff über das Netzwerk. Der Exploit ist öffentlich verfügbar und könnte genutzt werden.

PUBLISHED Reserved 2025-09-28 | Published 2025-09-29 | Updated 2025-09-29 | Assigner VulDB




MEDIUM: 5.1CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
MEDIUM: 4.7CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R
MEDIUM: 4.7CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R
5.8AV:N/AC:L/Au:M/C:P/I:P/A:P/E:POC/RL:ND/RC:UR

Problem types

Unrestricted Upload

Improper Access Controls

Product status

2.0.0
affected

2.0.1
affected

2.0.2
affected

Timeline

2025-09-28:Advisory disclosed
2025-09-28:VulDB entry created
2025-09-28:VulDB entry last update

Credits

electroN1c (VulDB User) reporter

References

vuldb.com/?id.326213 (VDB-326213 | YiFang CMS Backend File.php webUploader unrestricted upload) vdb-entry technical-description

vuldb.com/?ctiid.326213 (VDB-326213 | CTI Indicators (IOB, IOC, TTP, IOA)) signature permissions-required

vuldb.com/?submit.657903 (Submit #657903 | YiFang YiFang CMS V2.0.0 Arbitrary File Upload) third-party-advisory

github.com/...CMS-V2.0.0-Remote-Code-Execution-RCE-/issues/1 exploit issue-tracking

cve.org (CVE-2025-11136)

nvd.nist.gov (CVE-2025-11136)

Download JSON