CVE-2025-51651 Information

Description

An authenticated arbitrary file download vulnerability in the component /admin/Backups.php of Mccms v2.7.0 allows attackers to download arbitrary files via a crafted GET request.

Reference

https://github.com/Y4y17/CVE/blob/main/Arbitrary%20file%20download%20vulnerability.md

Related CNNVD

CNNVD-202507-1898 (Published: 2025-07-14)