CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Cmsmadesimple: >> File Manager >> 2.2.22 Security Vulnerabilities

CVE-2025-63678

An authenticated arbitrary file upload vulnerability in the /uploads/ endpoint of CMS Made Simple Foundation File Manager v2.2.22 allows attackers with Administrator privileges to execute arbitrary code via uploading a crafted PHP file.

CVSS Score

7.2

EPSS Score

0.001

Published

2025-11-10

Page 1

Vulnerabilities

Vulnerable Software

Cmsmadesimple: >> File Manager >> 2.2.22 Security Vulnerabilities

Products

Pricing

Contact Us