Vulnerabilities

CVE-2025-67436

by Fred · 22/12/2025

Authenticated Remote Code Execution (RCE) in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file (e.g., home.php).

More information : https://github.com/RajChowdhury240/CVE-2025-67435/

Similar

Tags: Cybersecurity Alert