CVE-2025-12923

Published: Nov 10, 2025Modified: Apr 29, 2026

2.0

Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Show more

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: CNA (Secondary)

Description

A vulnerability was determined in liweiyi ChestnutCMS up to 1.5.8. This vulnerability affects the function resourceDownload of the file /dev-api/common/download. Executing manipulation of the argument path can lead to path traversal. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized.

Affected (1)

Products: 1000mz: Chestnutcms

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
1000mz Chestnutcms	Up to 1.5.8

Related CWEs

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (4)

https://github.com/Huu1j/CVE/blob/main/chestnutcms%20Arbitrary%20File%20Read.md

Source: cna@vuldb.com

ExploitThird Party Advisory

https://vuldb.com/?ctiid.331643

Source: cna@vuldb.com

Permissions RequiredVDB Entry

https://vuldb.com/?id.331643

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

https://vuldb.com/?submit.681032

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

Timeline

No history available yet.