{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-34506", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2025-04-15T19:15:22.611Z", "datePublished": "2025-12-11T21:44:03.538Z", "dateUpdated": "2026-04-07T14:09:48.640Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "WBCE CMS", "vendor": "WBCE", "versions": [{"status": "affected", "version": "1.6.3"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:wbce:wbce_cms:1.6.5:*:*:*:*:*:*:*"}]}]}], "credits": [{"lang": "en", "type": "finder", "value": "Swammers8"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>WBCE CMS version 1.6.3 and prior contains an authenticated remote code execution vulnerability that allows administrators to upload malicious modules. Attackers can craft a specially designed ZIP module with embedded PHP reverse shell code to gain remote system access when the module is installed.</p>"}], "value": "WBCE CMS version 1.6.3 and prior contains an authenticated remote code execution vulnerability that allows administrators to upload malicious modules. Attackers can craft a specially designed ZIP module with embedded PHP reverse shell code to gain remote system access when the module is installed."}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "baseScore": 8.6, "baseSeverity": "HIGH", "exploitMaturity": "NOT_DEFINED", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-434", "description": "CWE-434: Unrestricted Upload of File with Dangerous Type", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-04-07T14:09:48.640Z"}, "references": [{"name": "ExploitDB-52132", "tags": ["exploit"], "url": "https://www.exploit-db.com/exploits/52132"}, {"name": "WBCE CMS Homepage", "tags": ["product"], "url": "https://wbce-cms.org/"}, {"name": "WBCE CMS GitHub Repository", "tags": ["product"], "url": "https://github.com/WBCE/WBCE_CMS"}, {"name": "YouTube Demonstration", "tags": ["product"], "url": "https://youtu.be/Dhg5gRe9Dzs?si=-WQoiWU1yqvYNz1e"}, {"name": "Swammers8 GitHub Repository", "tags": ["technical-description"], "url": "https://github.com/Swammers8/WBCE-v1.6.3-Authenticated-RCE"}, {"name": "VulnCheck Advisory: WBCE CMS 1.6.3 Authenticated Remote Code Execution via Module Upload", "tags": ["third-party-advisory"], "url": "https://www.vulncheck.com/advisories/wbce-cms-authenticated-remote-code-execution-via-module-upload"}], "source": {"discovery": "UNKNOWN"}, "title": "WBCE CMS 1.6.3 Authenticated Remote Code Execution via Module Upload", "x_generator": {"engine": "vulncheck"}, "datePublic": "2025-04-06T00:00:00.000Z"}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-12-12T19:33:20.317634Z", "id": "CVE-2025-34506", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-12T19:33:29.645Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-34506", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-12-12T19:33:20.317634Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-12T19:33:26.795Z"}}], "cna": {"title": "WBCE CMS 1.6.3 Authenticated Remote Code Execution via Module Upload", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "Swammers8"}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.6, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "WBCE", "product": "WBCE CMS", "versions": [{"status": "affected", "version": "1.6.3"}], "defaultStatus": "unaffected"}], "datePublic": "2025-04-06T00:00:00.000Z", "references": [{"url": "https://www.exploit-db.com/exploits/52132", "name": "ExploitDB-52132", "tags": ["exploit"]}, {"url": "https://wbce-cms.org/", "name": "WBCE CMS Homepage", "tags": ["product"]}, {"url": "https://github.com/WBCE/WBCE_CMS", "name": "WBCE CMS GitHub Repository", "tags": ["product"]}, {"url": "https://youtu.be/Dhg5gRe9Dzs?si=-WQoiWU1yqvYNz1e", "name": "YouTube Demonstration", "tags": ["product"]}, {"url": "https://github.com/Swammers8/WBCE-v1.6.3-Authenticated-RCE", "name": "Swammers8 GitHub Repository", "tags": ["technical-description"]}, {"url": "https://www.vulncheck.com/advisories/wbce-cms-authenticated-remote-code-execution-via-module-upload", "name": "VulnCheck Advisory: WBCE CMS 1.6.3 Authenticated Remote Code Execution via Module Upload", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "vulncheck"}, "descriptions": [{"lang": "en", "value": "WBCE CMS version 1.6.3 and prior contains an authenticated remote code execution vulnerability that allows administrators to upload malicious modules. Attackers can craft a specially designed ZIP module with embedded PHP reverse shell code to gain remote system access when the module is installed.", "supportingMedia": [{"type": "text/html", "value": "<p>WBCE CMS version 1.6.3 and prior contains an authenticated remote code execution vulnerability that allows administrators to upload malicious modules. Attackers can craft a specially designed ZIP module with embedded PHP reverse shell code to gain remote system access when the module is installed.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-434", "description": "CWE-434: Unrestricted Upload of File with Dangerous Type"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:wbce:wbce_cms:1.6.5:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-04-07T14:09:48.640Z"}}}, "cveMetadata": {"cveId": "CVE-2025-34506", "state": "PUBLISHED", "dateUpdated": "2026-04-07T14:09:48.640Z", "dateReserved": "2025-04-15T19:15:22.611Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2025-12-11T21:44:03.538Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:wbce:wbce_cms:*:*:*:*:*:*:*:*", "matchCriteriaId": "922BCB07-6BC8-448D-9E50-956A87DAF93E", "versionEndIncluding": "1.6.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "WBCE CMS version 1.6.3 and prior contains an authenticated remote code execution vulnerability that allows administrators to upload malicious modules. Attackers can craft a specially designed ZIP module with embedded PHP reverse shell code to gain remote system access when the module is installed."}], "id": "CVE-2025-34506", "lastModified": "2025-12-15T18:07:41.337", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2025-12-11T22:15:53.823", "references": [{"source": "disclosure@vulncheck.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/Swammers8/WBCE-v1.6.3-Authenticated-RCE"}, {"source": "disclosure@vulncheck.com", "tags": ["Product"], "url": "https://github.com/WBCE/WBCE_CMS"}, {"source": "disclosure@vulncheck.com", "tags": ["Product"], "url": "https://wbce-cms.org/"}, {"source": "disclosure@vulncheck.com", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "https://www.exploit-db.com/exploits/52132"}, {"source": "disclosure@vulncheck.com", "tags": ["Third Party Advisory"], "url": "https://www.vulncheck.com/advisories/wbce-cms-authenticated-remote-code-execution-via-module-upload"}, {"source": "disclosure@vulncheck.com", "tags": ["Exploit"], "url": "https://youtu.be/Dhg5gRe9Dzs?si=-WQoiWU1yqvYNz1e"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "disclosure@vulncheck.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-22T20:52:15.302878+00:00", "value": {"mitigation_remediation": ["Upgrade WBCE CMS to version 1.6.5 or newer where the upload validation is corrected.", "If an immediate upgrade is not possible, disable the module upload feature for administrative accounts or enforce strict validation to reject non\u2011UTF\u20118 or non\u2011ZIP file types, preventing malicious module deployment.", "Continuously monitor server logs and the modules directory for unexpected changes or reverse\u2011shell activity, and block the offending module immediately while investigating the source of the upload."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "The affected product is WBCE CMS. Versions through 1.6.3 are vulnerable. The Common Platform Enumeration for 1.6.5 is present in the data set, suggesting that the fix is included in version 1.6.5 and later. Administrators running any earlier release must be aware that they are exposed.", "description_and_impact": "WBCE CMS versions 1.6.3 and earlier allow an authenticated attacker with administrative privileges to upload a specially crafted ZIP module that contains embedded PHP reverse\u2011shell code. When the malicious module is installed, the system executes the PHP code on the server, granting the attacker remote control over the affected host. The vulnerability enables full compromise of confidentiality, integrity, and availability, effectively turning the CMS into a command and control point for further attacks. The weakness is identified as CWE\u2011434, Unrestricted Upload of File with Dangerous Type.", "risk_and_exploitability": "The CVSS score of 8.6 indicates a high severity, and the EPSS score of 1% shows that the vulnerability is not widely exploited but still represents a realistic threat. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires authenticated access; the attacker must obtain or compromise an administrator account to upload and activate the malicious module. Once activated, the attack runs with the privileges of the web server, providing a full remote execution vector."}}}}, "created": "2025-12-12T08:48:35.405127+00:00", "updated": "2026-04-22T21:00:06.362875+00:00", "vendors": ["wbce", "wbce$PRODUCT$wbce_cms"]}