Vulnerability Details CVE-2025-70073
An issue in ChestnutCMS v.1.5.8 and before allows a remote attacker to execute arbitrary code via the template creation function
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.3%
CVSS Severity
CVSS v3 Score 7.2
Products affected by CVE-2025-70073
-
cpe:2.3:a:1000mz:chestnutcms:-
-
cpe:2.3:a:1000mz:chestnutcms:1.3.18
-
cpe:2.3:a:1000mz:chestnutcms:1.3.19
-
cpe:2.3:a:1000mz:chestnutcms:1.3.20
-
cpe:2.3:a:1000mz:chestnutcms:1.3.21
-
cpe:2.3:a:1000mz:chestnutcms:1.3.23
-
cpe:2.3:a:1000mz:chestnutcms:1.3.24
-
cpe:2.3:a:1000mz:chestnutcms:1.3.25
-
cpe:2.3:a:1000mz:chestnutcms:1.4.0
-
cpe:2.3:a:1000mz:chestnutcms:1.4.1
-
cpe:2.3:a:1000mz:chestnutcms:1.4.2
-
cpe:2.3:a:1000mz:chestnutcms:1.4.3
-
cpe:2.3:a:1000mz:chestnutcms:1.4.4
-
cpe:2.3:a:1000mz:chestnutcms:1.4.5
-
cpe:2.3:a:1000mz:chestnutcms:1.5.0
-
cpe:2.3:a:1000mz:chestnutcms:1.5.1
-
cpe:2.3:a:1000mz:chestnutcms:1.5.2
-
cpe:2.3:a:1000mz:chestnutcms:1.5.3
-
cpe:2.3:a:1000mz:chestnutcms:1.5.4
-
cpe:2.3:a:1000mz:chestnutcms:1.5.5
-
cpe:2.3:a:1000mz:chestnutcms:1.5.6
-
cpe:2.3:a:1000mz:chestnutcms:1.5.7
-
cpe:2.3:a:1000mz:chestnutcms:1.5.8