Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-4556

The web management interface of Okcat Parking Management Platform from ZONG YU has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.

Published

2025-05-12T03:15:17.363

Last Modified

2025-05-12T17:32:32.760

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-434

Affected Vendors & Products

References

https://www.twcert.org.tw/en/cp-139-10111-b78e6-2.html ([email protected])
https://www.twcert.org.tw/tw/cp-132-10110-114f0-1.html ([email protected])