← Back

Matthewdeaves

matthewdeaves

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Willow Cms
willow_cms
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-12331
1Matthewdeaves
1Willow Cms
Apr 29, 2026
Oct 27, 2025
2.0 LOW· v4
7.2 HIGH· v3
5.8 MEDIUM· v2
A weakness has been identified in Willow CMS up to 1.4.0. Impacted is an unknown function of the file /admin/images/add. This manipulation causes unrestricted upload. Remote exploitation of the attack is possible. The ex...Show more
A weakness has been identified in Willow CMS up to 1.4.0. Impacted is an unknown function of the file /admin/images/add. This manipulation causes unrestricted upload. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited.Show less
CVE-2025-12330
1Matthewdeaves
1Willow Cms
Apr 29, 2026
Oct 27, 2025
1.9 LOW· v4
4.8 MEDIUM· v3
3.3 LOW· v2
A security flaw has been discovered in Willow CMS up to 1.4.0. This issue affects some unknown processing of the file /admin/articles/add of the component Add Post Page. The manipulation of the argument title/body result...Show more
A security flaw has been discovered in Willow CMS up to 1.4.0. This issue affects some unknown processing of the file /admin/articles/add of the component Add Post Page. The manipulation of the argument title/body results in cross site scripting. The attack may be launched remotely. The exploit has been released to the public and may be exploited.Show less