CVE Catalog

CVE-2025-69163

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.47%

37th percentile — higher than 37% of all known CVEs

Summary

WineShop versions up to 3.17 are vulnerable to unauthenticated local file inclusion. An attacker can exploit this vulnerability to gain access to system files.

Risk Assessment

Organizations may be exposed to data leakage and unauthorized access to sensitive information. Potential consequences include breaches of privacy and data security.

Recommendation

It is recommended to update WineShop to the latest version to mitigate this vulnerability. Additionally, implementing security measures to prevent unauthorized file access is advisable.

Original NVD description (English source)

Unauthenticated Local File Inclusion in WineShop <= 3.17 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS