Arbitrary File Upload Vulnerability in daicuocms by Jayfoxaa
CVE-2025-61181

Currently unrated

Key Information:

Vendor: Jayfoxaa
Status: daicuocms
Vendor: CVE Published:; 21 October 2025

What is CVE-2025-61181?

The daicuocms version 1.3.13 is vulnerable to an arbitrary file upload issue in its image upload functionality. This vulnerability allows attackers to upload files without proper verification, potentially leading to unauthorized access or execution of malicious code on the server. It’s crucial for users of this product to implement appropriate security measures to mitigate the risks associated with this vulnerability.

References

https://github.com/jayfoxaa/yuhang-Zhou/blob/main/upload/...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 21, 2025
Vulnerability Reserved
Sep 26, 2025

JSON