VYPR

BuilderEngine

by BuilderEngine

CVEs (1)

  • CVE-2025-34100CriJul 10, 2025
    risk 0.64cvss epss 0.02

    An unrestricted file upload vulnerability exists in BuilderEngine 3.5.0 via the integration of the elFinder 2.0 file manager and its use of the jQuery File Upload plugin. The plugin fails to properly validate or restrict file types or locations during upload operations, allowing…