CVE-2025-3566

A vulnerability, which was classified as critical, has been found in veal98 ??? Echo ?????? 4.2. This issue affects the function uploadMdPic of the file /discuss/uploadMdPic. The manipulation of the argument editormd-image-file leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt