CVE-2025-39401 – Mojoomla WPAMS Unrestricted File Upload Vulnerability

May 19, 2025

CVE ID : CVE-2025-39401

Published : May 19, 2025, 8:15 p.m. | 3 hours, 59 minutes ago

Description : Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS allows Upload a Web Shell to a Web Server.This issue affects WPAMS: from n/a through 44.0 (17-08-2023).

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-39402 – Mojoomla WPAMS Unrestricted File Upload Remote Code Execution

Next Article CVE-2025-39395 – Mojoomla WPAMS SQL Injection

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

GPT-5 should have a higher “degree of scientific certainty” than the current ChatGPT — but with less model switching

Elon Musk’s Grok 3 AI coming to Azure proves Satya Nadella’s allegiance isn’t to OpenAI, but to maximizing Microsoft’s profit gains by heeding consumer demands

One of the most promising open-world RPGs in years is releasing next week on Xbox and PC

NVIDIA’s latest driver fixes some big issues with DOOM: The Dark Ages

Community News: Latest PECL Releases (05.20.2025)

Community News: Latest PECL Releases (05.20.2025)

Getting Started with Personalization in Sitecore XM Cloud: Enable, Extend, and Execute

Universal Design and Global Accessibility Awareness Day (GAAD)

GPT-5 should have a higher “degree of scientific certainty” than the current ChatGPT — but with less model switching

GPT-5 should have a higher “degree of scientific certainty” than the current ChatGPT — but with less model switching

Elon Musk’s Grok 3 AI coming to Azure proves Satya Nadella’s allegiance isn’t to OpenAI, but to maximizing Microsoft’s profit gains by heeding consumer demands

One of the most promising open-world RPGs in years is releasing next week on Xbox and PC

CVE-2025-39401 – Mojoomla WPAMS Unrestricted File Upload Vulnerability

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-4996 – Intelbras RF 301K Cross-Site Scripting Vulnerability

Meet Martin Krahl: Director of Software Engineering at Perficient

How to get Google’s new Pixel 9a for free

Petition filed to cancel Oracleâ€™s trademark for JavaScript

Wrote a 3min blog on how Linear Algebra is used in Machine Learning

LLM safeguards are easily bypassed, UK government study finds

How to Run Integration Tests with GitHub Service Containers

How to Implement PHP Performance Best Practices Using AJAX and Smart HTTP Responses

Drag & Drop issue in selenium web driver

CVE-2025-39401 – Mojoomla WPAMS Unrestricted File Upload Vulnerability

Related Posts