CVE Catalog

CVE-2025-52078

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.30%

22th percentile - higher than 22% of all known CVEs

Summary

A file upload vulnerability exists in Writebot AI Content Generator SaaS React Template through version 4.0.0, allowing remote attackers to escalate privileges via a crafted POST request to the /file-upload endpoint.

Risk Assessment

An attacker can gain unauthorized access to administrative functions or sensitive data, leading to full application compromise.

Recommendation

Immediately update Writebot AI Content Generator SaaS React Template to the latest version after 4.0.0 and implement file type validation and authentication on file upload endpoints.

Original NVD description (English source)

File upload vulnerability in Writebot AI Content Generator SaaS React Template thru 4.0.0, allowing remote attackers to gain escalated privileges via a crafted POST request to the /file-upload endpoint.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS