CVE-2025-39401 – Mojoomla WPAMS Unrestricted File Upload Vulnerability

May 19, 2025

CVE ID : CVE-2025-39401

Published : May 19, 2025, 8:15 p.m. | 3 hours, 59 minutes ago

Description : Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS allows Upload a Web Shell to a Web Server.This issue affects WPAMS: from n/a through 44.0 (17-08-2023).

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-39402 – Mojoomla WPAMS Unrestricted File Upload Remote Code Execution

Next Article CVE-2025-39395 – Mojoomla WPAMS SQL Injection

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

GPT-5 should have a higher “degree of scientific certainty” than the current ChatGPT — but with less model switching

Elon Musk’s Grok 3 AI coming to Azure proves Satya Nadella’s allegiance isn’t to OpenAI, but to maximizing Microsoft’s profit gains by heeding consumer demands

One of the most promising open-world RPGs in years is releasing next week on Xbox and PC

NVIDIA’s latest driver fixes some big issues with DOOM: The Dark Ages

Community News: Latest PECL Releases (05.20.2025)

Community News: Latest PECL Releases (05.20.2025)

Getting Started with Personalization in Sitecore XM Cloud: Enable, Extend, and Execute

Universal Design and Global Accessibility Awareness Day (GAAD)

GPT-5 should have a higher “degree of scientific certainty” than the current ChatGPT — but with less model switching

GPT-5 should have a higher “degree of scientific certainty” than the current ChatGPT — but with less model switching

Elon Musk’s Grok 3 AI coming to Azure proves Satya Nadella’s allegiance isn’t to OpenAI, but to maximizing Microsoft’s profit gains by heeding consumer demands

One of the most promising open-world RPGs in years is releasing next week on Xbox and PC

CVE-2025-39401 – Mojoomla WPAMS Unrestricted File Upload Vulnerability

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-30193 – DNSdist TCP Stack Exhaustion Denial of Service Vulnerability

CVE-2025-46734 – League Commonmark Attributes Extension Cross-Site Scripting Vulnerability

CVE-2025-37817 – Linux kernel Double Free in Chameleon Driver

Microsoft offers $4 million in AI and cloud bug bounties – how to qualify

The Ability to Prevent Destructive Commands From Running is Coming to Laravel 11

How to build a crypto wallet application using Amazon Managed Blockchain Access and Query

This AI Paper Explores the Fundamental Aspects of Reinforcement Learning from Human Feedback (RLHF): Aiming to Clarify its Mechanisms and Limitations

Last Week in AI #266: 2024 AI Index Report, Devin’s misleading demo, Texas to use AI to grade exams, the future of robotics, and more!

Zero Day: Robert De Niro Tackles a Devastating Cyberattack in Netflix’s Thrilling New Series

CVE-2025-39401 – Mojoomla WPAMS Unrestricted File Upload Vulnerability

Related Posts