CVE-2025-15153: Files or Directories Accessible in PbootCMS
A weakness has been identified in PbootCMS up to 3.2.12. Impacted is an unknown function of the file /data/pbootcms.db of the component SQLite Database. Executing manipulation can lead to files or directories accessible. It is possible to launch the attack remotely. Attacks of this nature are highly complex. The exploitability is considered difficult. The exploit has been made available to the public and could be exploited. Modifying the configuration settings is advised.
CVE-2025-15153: Files or Directories Accessible in PbootCMS
Description
A weakness has been identified in PbootCMS up to 3.2.12. Impacted is an unknown function of the file /data/pbootcms.db of the component SQLite Database. Executing manipulation can lead to files or directories accessible. It is possible to launch the attack remotely. Attacks of this nature are highly complex. The exploitability is considered difficult. The exploit has been made available to the public and could be exploited. Modifying the configuration settings is advised.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-12-27T16:47:06.711Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 695197befd294cd93b1fb609
Added to database: 12/28/2025, 8:49:02 PM
Last updated: 12/28/2025, 11:11:03 PM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2025-15160: Stack-based Buffer Overflow in Tenda WH450
HighCVE-2025-15155: Stack-based Buffer Overflow in floooh sokol
MediumCVE-2025-15154: Use of Less Trusted Source in PbootCMS
MediumCVE-2025-15152: Unrestricted Upload in h-moses moga-mall
MediumCVE-2025-15151: Password in Configuration File in TaleLin Lin-CMS
MediumActions
Need more coverage?
Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.