CNNVD-202507-3869 Information

CNNVD ID

CNNVD-202507-3869

Related CVE

CVE-2025-41396

• CNNVD Published: 2025-07-31

Description (Chinese)

Alfasado PowerCMS是日本Alfasado公司的一套内容管理系统（CMS）。 Alfasado PowerCMS存在路径遍历漏洞，该漏洞源于文件上传功能存在路径遍历，可能导致覆盖任意文件。

Description (English)

Alfasado PowerCMS is a content management system (CMS) for Alfasado, Japan. Alfasado PowerCMS has a loophole in its path, which stems from the fact that the file upload function has a path pass, which may lead to overwhelming any file.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

Alfasado

Published

2025-07-31

Last Modified

2026-02-24

References

https://jvn.jp/en/vu/JVNVU93412964/ https://www.powercms.jp/news/release-powercms-671-531-461.html

Patch

https://www.powercms.jp/news/release-powercms-671-531-461.html