CNNVD-202510-2724 Information

CNNVD ID

CNNVD-202510-2724

Related CVE

CVE-2025-60790

• CNNVD Published: 2025-10-21

Description (Chinese)

ProcessWire是ProcessWire公司的一个友好且功能强大的开源 CMS，具有强大的 API。 ProcessWire 3.0.246版本存在安全漏洞，该漏洞源于低权限用户可上传特制ZIP文件，可能导致资源耗尽拒绝服务。

Description (English)

Procswire is a friendly and powerful open source of Procswire CMS, with a strong API. AccessWire 3.246 has a security loophole, which stems from the possibility that low-permit users can upload special ZIP files, which may lead to the depletion of resources to refuse services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

ProcessWire

Published

2025-10-21

Last Modified

2026-02-24

References

https://github.com/processwire/processwire-issues/issues/2120 https://access.redhat.com/security/cve/cve-2025-60790