Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-45242

Rhymix v2.1.22 was discovered to contain an arbitrary file deletion vulnerability via the procFileAdminEditImage method in /file/file.admin.controller.php.

Published

2025-05-05T17:18:50.540

Last Modified

2025-06-17T14:12:39.773

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.7 (HIGH)

Weaknesses

Type: Secondary
CWE-922

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	rhymix	rhymix	2.1.22	Yes

References

http://rhymix.com Broken Link ([email protected])
https://gist.github.com/chao112122/536a55fece5f578b90cee2c841eecdce Third Party Advisory ([email protected])
https://github.com/rhymix/rhymix Product ([email protected])