CVE 8.6 HIGH

WBCE CMS 1.6.3 Authenticated Remote Code Execution via Module Upload_CVE-2025-34506

December 11, 2025 invoker category_cve

8.6 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

WBCE CMS version 1.6.3 and prior contains an authenticated remote code execution vulnerability that allows administrators to upload malicious modules. Attackers can craft a specially designed ZIP module with embedded PHP reverse shell code to gain remote system access when the module is installed.

AI Analysis

Authenticated remote code execution vulnerability in WBCE CMS 1.6.3 and prior via malicious module upload

Basic Information

ID CVE-2025-34506

Source VulnCheck

Published Dec 11, 2025 at 21:44

Affected Product

Vendor WBCE

Product WBCE CMS

Version 1.6.3

Affected Versions WBCE WBCE CMS 1.6.3

CWE Classification

CWE-434

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor WBCE

Product WBCE CMS

Version 1.6.3

References

{
    "lastseen": "",
    "description": "WBCE CMS version 1.6.3 and prior contains an authenticated remote code execution vulnerability that allows administrators to upload malicious modules. Attackers can craft a specially designed ZIP module with embedded PHP reverse shell code to gain remote system access when the module is installed.",
    "published": "2025-12-11T21:44:03.538Z",
    "modified": "2025-12-11T21:44:03.538Z",
    "type": "cve",
    "title": "WBCE CMS 1.6.3 Authenticated Remote Code Execution via Module Upload",
    "source": "VulnCheck",
    "references": "https://www.exploit-db.com/exploits/52132\nhttps://wbce-cms.org/\nhttps://github.com/WBCE/WBCE_CMS\nhttps://youtu.be/Dhg5gRe9Dzs?si=-WQoiWU1yqvYNz1e\nhttps://github.com/Swammers8/WBCE-v1.6.3-Authenticated-RCE\nhttps://www.vulncheck.com/advisories/wbce-cms-authenticated-remote-code-execution-via-module-upload",
    "id": "CVE-2025-34506",
    "bulletinFamily": "",
    "cwe": [
        "CWE-434"
    ],
    "cvelist": null,
    "sourceData": "WBCE WBCE CMS 1.6.3",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "WBCE CMS",
    "version": "1.6.3",
    "vendor": "WBCE",
    "ai_description": "Authenticated remote code execution vulnerability in WBCE CMS 1.6.3 and prior via malicious module upload",
    "ai_severity": "High",
    "ai_vendor": "WBCE",
    "ai_product": "WBCE CMS",
    "ai_version": "1.6.3",
    "ai_score": 8.6
}

💭 Join the Security Discussion ❌ Cancel Reply