CNNVD-202512-2627 Information

CNNVD ID

CNNVD-202512-2627

Related CVE

CVE-2023-53889

• CNNVD Published: 2025-12-15

Description (Chinese)

Perch CMS是Perch公司的一个内容管理系统。 Perch CMS 3.2版本存在安全漏洞，该漏洞源于允许经过身份验证的管理员通过资产管理界面上传任意PHP文件，可能导致远程代码执行。

Description (English)

Perch CMS is a content management system for Perch. Version 3.2 of Perch CMS contains a security loophole, which stems from allowing a certified administrator to upload any PHP file through the asset management interface, which may lead to remote code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Perch

Published

2025-12-15

Last Modified

2026-02-24

References

https://grabaperch.com/ https://www.exploit-db.com/exploits/51620 https://www.vulncheck.com/advisories/perch-cms-remote-code-execution-via-unrestricted-file-upload