CVE-2025-15151: Password in Configuration File in TaleLin Lin-CMS
A vulnerability was determined in TaleLin Lin-CMS up to 0.6.0. This affects an unknown part of the file /tests/config.py of the component Tests Folder. This manipulation of the argument username/password causes password in configuration file. The attack is possible to be carried out remotely. The complexity of an attack is rather high. It is indicated that the exploitability is difficult. The exploit has been publicly disclosed and may be utilized.
CVE-2025-15151: Password in Configuration File in TaleLin Lin-CMS
Description
A vulnerability was determined in TaleLin Lin-CMS up to 0.6.0. This affects an unknown part of the file /tests/config.py of the component Tests Folder. This manipulation of the argument username/password causes password in configuration file. The attack is possible to be carried out remotely. The complexity of an attack is rather high. It is indicated that the exploitability is difficult. The exploit has been publicly disclosed and may be utilized.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-12-27T13:55:00.561Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 6951862afd294cd93b19e372
Added to database: 12/28/2025, 7:34:02 PM
Last updated: 12/28/2025, 7:34:37 PM
Views: 1
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2025-15150: Stack-based Buffer Overflow in PX4 PX4-Autopilot
MediumCVE-2025-15149: Cross Site Scripting in rawchen ecms
MediumCVE-2025-15148: Code Injection in CmsEasy
MediumCVE-2025-15146: Cross Site Scripting in SohuTV CacheCloud
MediumCVE-2025-15145: Cross Site Scripting in SohuTV CacheCloud
MediumActions
Need more coverage?
Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.