Home

Description

An arbitrary file upload vulnerability in Umbraco CMS v16.3.3 allows attackers to execute arbitrary code via uploading a crafted PDF file.

PUBLISHED Reserved 2025-12-08 | Published 2025-12-22 | Updated 2025-12-22 | Assigner mitre

References

umbraco.com

github.com/vuquyen03/CVE/tree/main/CVE-2025-67288

cve.org (CVE-2025-67288)

nvd.nist.gov (CVE-2025-67288)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.