CVE-2025-69828 | THREATINT

Description

File Upload vulnerability in TMS Global Software TMS Management Console v.6.3.7.27386.20250818 allows a remote attacker to execute arbitrary code via the Logo upload in /Customer/AddEdit

PUBLISHED Reserved 2026-01-09 | Published 2026-01-22 | Updated 2026-01-22 | Assigner mitre

References

tmsglobalsoft.com

github.com/ZuoqTr/CVE/blob/main/CVE-2025-69828.md

cve.org (CVE-2025-69828)

nvd.nist.gov (CVE-2025-69828)

Download JSON