CVE-2025-4538 – KKFileView Unrestricted File Upload Vulnerability

May 11, 2025

CVE ID : CVE-2025-4538

Published : May 11, 2025, 11:15 a.m. | 1 hour, 12 minutes ago

Description : A vulnerability was found in kkFileView 4.4.0. It has been classified as critical. This affects an unknown part of the file /fileUpload. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4539 – Hainan ToDesk DLL File Parser Uncontrolled Search Path Vulnerability

Next Article CVE-2025-4537 – RuoYi-Vue Cleartext Storage of Sensitive Information in Cookie

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Triple 4K 144Hz displays from something this small blows my mind — CalDigit’s Element 5 Hub tested and reviewed

Ori and the Blind Forest studio head says they could be forced to “shut down” due to the impact of negative Steam reviews for ‘No Rest for the Wicked’

Windows Phone just got its first AI ChatGPT-style app. No, really.

New Xbox games launching this week, from May 12 through May 18 — DOOM: The Dark Ages arrives on Xbox Game Pass

Brisa v0.2.13

Brisa v0.2.13

Build Digital Assets & Earn Through Referrals with Biela — A Genuine Opportunity for Entrepreneurs

Laravel Routing

Triple 4K 144Hz displays from something this small blows my mind — CalDigit’s Element 5 Hub tested and reviewed

Triple 4K 144Hz displays from something this small blows my mind — CalDigit’s Element 5 Hub tested and reviewed

Ori and the Blind Forest studio head says they could be forced to “shut down” due to the impact of negative Steam reviews for ‘No Rest for the Wicked’

Windows Phone just got its first AI ChatGPT-style app. No, really.

CVE-2025-4538 – KKFileView Unrestricted File Upload Vulnerability

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-4558 – WormHole Tech GPM Unauthenticated Password Change Vulnerability

This AI Paper Explores the Extent to which LLMs can Self-Improve their Performance as Agents in Long-Horizon Tasks in a Complex Environment Using the WebArena Benchmark

NVIDIA’s most expensive laptops are a terrible value — Here’s what you should buy instead

FrontierMath: The Benchmark that Highlights AIâ€™s Limits in Mathematics

I found an 85-inch Hisense TV that’s hard not to recommend at its $1,100 off price

Fediverso: Perché Sceglierlo al Posto dei Social Media Commerciali

OpenDocument Format (ODF) celebra il suo 20° anniversario!

Eliminating Vector Quantization: Diffusion-Based Autoregressive AI Models for Image Generation

CVE-2025-34028 impacts Commvault Command Center

CVE-2025-4538 – KKFileView Unrestricted File Upload Vulnerability

Related Posts