VYPR
Unrated severityOSV Advisory· Published Dec 17, 2025· Updated Dec 18, 2025

CVE-2025-67174

CVE-2025-67174

Description

A local file inclusion (LFI) vulnerability in RiteCMS v3.1.0 allows attackers to read arbitrary files on the host via a directory traversal in the admin_language_file and default_page_language_file in the admin.php component

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Handylulu/RitecmsOSV2 versions
    V3.1.0, v3.0.0+ 1 more
    • (no CPE)range: V3.1.0, v3.0.0
    • (no CPE)range: =3.1.0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.