CVE-2025-6002 – VirtueMart Unrestricted File Upload Vulnerability

June 11, 2025

CVE ID : CVE-2025-6002

Published : June 11, 2025, 5:15 p.m. | 3 hours, 13 minutes ago

Description : An unrestricted file upload vulnerability exists in the Product Image section of the VirtueMart backend. Authenticated attackers can upload files with arbitrary extensions, including executable or malicious files, potentially leading to remote code execution or other security impacts depending on server configuration.

Severity: 7.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-0913 – Apache os File Symlink Creation Vulnerability

Next Article CVE-2025-6001 – VirtueMart CSRF File Upload Bypass

Highlights

CVE-2025-5324 – TechPowerUp GPU-Z IOCTL Handler Memory Leak Vulnerability

May 29, 2025

CVE ID : CVE-2025-5324

Published : May 29, 2025, 7:15 p.m. | 2 hours, 18 minutes ago

Description : A vulnerability, which was classified as problematic, was found in TechPowerUp GPU-Z 2.23.0. Affected is the function sub_140001880 in the library GPU-Z.sys of the component 0x8000645C IOCTL Handler. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

6 registry tweaks every tech-savvy user must apply on Windows 11

Here’s why network infrastructure is vital to maximizing your company’s AI adoption

The AI video tool behind the most viral social trends right now

Got a new password manager? How to clean up the password mess you left in the cloud

Right Invoicing App for iPhone: InvoiceTemple

Right Invoicing App for iPhone: InvoiceTemple

Tunnel Run game in 170 lines of pure JS

Integrating Drupal with Salesforce SSO via SAML and Dynamic User Sync

6 registry tweaks every tech-savvy user must apply on Windows 11

6 registry tweaks every tech-savvy user must apply on Windows 11

Is Chrome Copying Edge? ‘Omnibox Tools’ Bring Edge-Style Address Bar Shortcuts

Windows 11 24H2’s new Start Menu auto-changes size based on screen resolution

CVE-2025-6002 – VirtueMart Unrestricted File Upload Vulnerability

Tenable Agent for Windows Vulnerability Let Attackers Login as Admin to Delete The System Files

Meta Invests $14.3 Billion in Scale AI, Recruits Founder Alexandr Wang for Superintelligence Lab

Rilasciata Rocky Linux 10: La Nuova Alternativa Libera a Red Hat Enterprise Linux 10

CVE-2025-33073 – Windows SMB Privilege Escalation Vulnerability

Competitive programming with AlphaCode

CVE-2025-5110 – FreeFloat FTP Server Buffer Overflow Vulnerability

CVE-2025-5324 – TechPowerUp GPU-Z IOCTL Handler Memory Leak Vulnerability

CVE-2025-46802 – PuTTY Screen Session Privilege Escalation Vulnerability

CVE-2025-5504 – TOTOLINK X2000R Command Injection Vulnerability

CISA Alert: Critical Flaws in Consilium Safety CS5000 Fire Panel Could Enable Remote Takeover, No Patch

CVE-2025-6002 – VirtueMart Unrestricted File Upload Vulnerability

Related Posts