Vulnerabilities

CVE-2025-34506

by Fred · 11/12/2025

WBCE CMS version 1.6.3 and prior contains an authenticated remote code execution vulnerability that allows administrators to upload malicious modules. Attackers can craft a specially designed ZIP module with embedded PHP reverse shell code to gain remote system access when the module is installed.

More information : https://github.com/Swammers8/WBCE-v1.6.3-Authenticated-RCE

Similar

Tags: Cybersecurity Alert