High severity7.2NVD Advisory· Published Sep 3, 2020· Updated Jun 17, 2026
CVE-2020-25042
CVE-2020-25042
Description
An arbitrary file upload issue exists in Mara CMS 7.5. In order to exploit this, an attacker must have a valid authenticated (admin/manager) session and make a codebase/dir.php?type=filenew request to upload PHP code to codebase/handler.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Mara/CMSdescription
Patches
Vulnerability mechanics
References
3- packetstormsecurity.com/files/159304/MaraCMS-7.5-Remote-Code-Execution.htmlnvdExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/48780nvdExploitThird Party AdvisoryVDB Entry
- sourceforge.net/projects/maracms/nvdProductThird Party Advisory
News mentions
0No linked articles in our index yet.