CNNVD-202508-2921 Information

CNNVD ID

CNNVD-202508-2921

Related CVE

CVE-2025-9415

• CNNVD Published: 2025-08-25

Description (Chinese)

GreenCMS是GreenCMS开源的一套基于ThinkPHP开发的内容管理系统（CMS）。 GreenCMS 2.3.0603及之前版本存在安全漏洞，该漏洞源于对文件/index.php?m=admin&c=media&a=fileconnect中参数upload[]的错误操作，导致无限制上传。

Description (English)

GreenCMS is a content management system (CMS) based on ThinkPHP, which is an open source of GreenCMS. There is a security loophole in GreenCMS 2.3.0603 and earlier versions, which results from an unlimited upload due to an error in the parameter utload[] in file/index.php?m=admin&c=media&a=fileconect.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

GreenCMS

Published

2025-08-25

Last Modified

2026-02-24

References

https://vuldb.com/?submit.633847 https://vuldb.com/?id.321258 https://vuldb.com/?ctiid.321258 https://github.com/lan041221/cvec/issues/10 https://nvd.nist.gov/vuln/detail/CVE-2025-9415