Pbootcms CVE Vulnerabilities

Name: Pbootcms
Author: Pbootcms

By Pbootcms — 2 known vulnerabilities

Critical

High

Medium

Low

None

All Pbootcms CVEs

Recent Highest Score Oldest

CVE-2025-15154

5.3 medium

A security vulnerability has been detected in PbootCMS up to 3.2.12. The affected element is the function get_user_ip of the file core/function/handle.php of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to use of less trusted source. The attack can be initiate

Dec 28, 2025

CVE-2025-15153

3.7 low

A weakness has been identified in PbootCMS up to 3.2.12. Impacted is an unknown function of the file /data/pbootcms.db of the component SQLite Database. Executing a manipulation can lead to files or directories accessible. It is possible to launch the attack remotely. Attacks of this nature are high

Dec 28, 2025