CVE Catalog

CVE-2025-55835

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
0.92%

56th percentile - higher than 56% of all known CVEs

Summary

File upload vulnerability in SueamCMS v.0.1.2 allows a remote attacker to execute arbitrary code due to lack of input filtering.

Risk Assessment

An attacker can upload a malicious file (e.g., PHP script) and achieve remote code execution on the server, leading to full compromise of the CMS system.

Recommendation

Immediately update SueamCMS to the latest version and implement file type and content validation mechanisms.

Original NVD description (English source)

File Upload vulnerability in SueamCMS v.0.1.2 allows a remote attacker to execute arbitrary code via the lack of filtering.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS