CVE-2025-45317

Published
View on NVD ↗
CVSS v3
6.5
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

A zip slip vulnerability in the /modules/ImportModule.php component of hortusfox-web v4.4 allows attackers to execute arbitrary code via a crafted archive.

chrisWalker11/Cves
chrisWalker11/Cves
GitHubGitHub
danielbrendel/hortusfox-web
danielbrendel/hortusfox-web
Self-hosted collaborative plant management and tracking system for plant enthusiasts
GitHubGitHub
1.55K