CVE-2025-15197
published 2025-12-29CVE-2025-15197: A security flaw has been discovered in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. This vulnerability affects unknown code of the…
low2CVSS 4.0
AVNACLATNPRHUINVCLVILVALSCNSINSANEPCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
A security flaw has been discovered in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. This vulnerability affects unknown code of the file /admin/editposts.php. Performing manipulation of the argument image results in unrestricted upload. The attack may be initiated remotely. The exploit has been released to the public and may be exploited.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| anirbandutta | news-buzz | — | — |
| anirbandutta9 | content_management_system | — | — |
| anirbandutta9 | news-buzz | — | — |
| code-projects | content_management_system | — | — |
| code-projects | news-buzz | — | — |