CVE-2025-29281 Information

Description

In PerfreeBlog version 4.0.11 regular users can exploit the arbitrary file upload vulnerability in the attach component to upload arbitrary files and execute code within them.

Reference

https://github.com/Cray0nLee/CVE/issues/2