CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Webair: >> Tquadra Cms Security Vulnerabilities

CVE-2025-60574

A Local File Inclusion (LFI) vulnerability has been identified in tQuadra CMS 4.2.1117. The issue exists in the "/styles/" path, which fails to properly sanitize user-supplied input. An attacker can exploit this by sending a crafted GET request to retrieve arbitrary files from the underlying system.

CVSS Score

7.5

EPSS Score

0.001

Published

2025-11-07

Page 1

Vulnerabilities

Vulnerable Software

Webair: >> Tquadra Cms Security Vulnerabilities

Products

Pricing

Contact Us