Critical severity10.0NVD Advisory· Published Jul 24, 2025· Updated Jun 5, 2026
CVE-2025-5243
CVE-2025-5243
Description
Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in SMG Software Information Portal allows Code Injection, Upload a Web Shell to a Web Server, Code Inclusion.
This issue affects Information Portal: before 13.06.2025.
Affected products
1- Range: <13.06.2025
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.