9.9

CVE-2025-32028

Exploit

EPSS 1.58%
Veröffentlicht 08.04.2025 16:06:33
Zuletzt bearbeitet 30.07.2025 17:36:18
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

HAX CMS PHP allows Insecure File Upload to Lead to Remote Code Execution

HAX CMS PHP allows you to manage your microsite universe with PHP backend. Multiple file upload functions within the HAX CMS PHP application call a ’save’ function in ’HAXCMSFile.php’. This save function uses a denylist to block specific file types from being uploaded to the server. This list is non-exhaustive and only blocks ’.php’, ’.sh’, ’.js’, and ’.css’ files. The existing logic causes the system to "fail open" rather than "fail closed." This vulnerability is fixed in 10.0.3.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Psu ≫ Haxcms-php Version >= 9.0.0 < 10.0.3

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.58%	0.723

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	9.9	3.1	6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

https://github.com/haxtheweb/issues/security/advisories/GHSA-vj5q-3jv2-cg5p

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2025-32028

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-32028

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-32028

EUVD