CVE-2025-5385 – JeeWMS Path Traversal Vulnerability

May 31, 2025

CVE ID : CVE-2025-5385

Published : May 31, 2025, 5:15 p.m. | 29 minutes ago

Description : A vulnerability was found in JeeWMS up to 20250504. It has been declared as critical. This vulnerability affects the function doAdd of the file /cgformTemplateController.do?doAdd. The manipulation leads to path traversal. The attack can be initiated remotely. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5386 – JeeWMS SQL Injection Vulnerability

Next Article CVE-2025-5384 – JeeWMS SQL Injection Vulnerability

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Smashing Animations Part 4: Optimising SVGs

I test AI tools for a living. Here are 3 image generators I actually use and how

The world’s smallest 65W USB-C charger is my latest travel essential

This Spotlight alternative for Mac is my secret weapon for AI-powered search

Tech prophet Mary Meeker just dropped a massive report on AI trends – here’s your TL;DR

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Beyond AEM: How Adobe Sensei Powers the Full Enterprise Experience

Simplify Negative Relation Queries with Laravel’s whereDoesntHaveRelation Methods

Cast Model Properties to a Uri Instance in 12.17

My Favorite Obsidian Plugins and Their Hidden Settings

My Favorite Obsidian Plugins and Their Hidden Settings

Rilasciata /e/OS 3.0: Nuova Vita per Android Senza Google, Più Privacy e Controllo per l’Utente

Rilasciata Oracle Linux 9.6: Scopri le Novità e i Miglioramenti nella Sicurezza e nelle Prestazioni

CVE-2025-5385 – JeeWMS Path Traversal Vulnerability

HPE StoreOnce Faces Critical CVE-2025-37093 Vulnerability — Urges Immediate Patch Upgrade

Google fixes Chrome zero-day with in-the-wild exploit (CVE-2025-5419)

How I turned traditional Ubuntu Mate into a modern, minimal desktop – and you can too

Microsoft lays off another 305 employees, this time closer to home

MMSearch-R1: End-to-End Reinforcement Learning for Active Image Search in LMMs

CVE-2025-3647 – Moodle Information Disclosure

Moonshine is an Open-source Admin Panel for Laravel

Rilasciata SystemRescue 12: Nuove Funzionalità e Supporto per Bcachefs

I tested MSI Claw 8 AI+ and compared it against Steam Deck — Here’s why one of these handhelds reigns supreme

CVE-2025-30322 – Substance3D Painter Out-of-Bounds Write Vulnerability

CVE-2025-5385 – JeeWMS Path Traversal Vulnerability

Related Posts