CVE Details
Basic Information
| Title | CVE-2025-39402 |
|---|---|
| Type | cve |
| Published | 2025-05-19T20:15:25 |
| Last Seen | 2025-05-19T20:23:58 |
CVSS Information
| Base Score | 9.9 (CRITICAL) |
|---|---|
| Attack Vector | NETWORK |
| Attack Complexity | LOW |
| Privileges Required | LOW |
| User Interaction | NONE |
| Scope | CHANGED |
| Confidentiality Impact | HIGH |
| Integrity Impact | HIGH |
| Availability Impact | HIGH |
AI Analysis
| AI Description | A critical vulnerability in the mojoomla WPAMS plugin allows attackers to upload malicious files, potentially leading to web server compromise. This issue is highly severe due to the ease of exploitation and significant impact. |
|---|---|
| AI Severity | Critical |
| Vendor | WordPress Community |
| Product | mojoomla WPAMS |
| Affected Version | n/a |
Additional Information
| CVE List | CVE-2025-39402 |
|---|---|
| CWE List | CWE-434 |
| Bulletin Family | cve |
Description
Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS allows Upload a Web Shell to a Web Server.This issue affects WPAMS: from n/a through…
CVSS Score Summary
Base Score: %!f(string=#) (CRITICAL)