CVE-2025-32496
Severity CVSS v4.0:
Pending analysis
Type:
CWE-352
Cross-Site Request Forgery (CSRF)
Publication date:
09/04/2025
Last modified:
09/04/2025
Description
Cross-Site Request Forgery (CSRF) vulnerability in Uncodethemes Ultra Demo Importer allows Upload a Web Shell to a Web Server. This issue affects Ultra Demo Importer: from n/a through 1.0.5.
Impact
Base Score 3.x
9.60
Severity 3.x
CRITICAL