CVE-2025-65783

← CVEs

CRIT 9.8

Published

2026-01-13

Last Modified

2026-02-05

Affected Apps

Affected Devices

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An arbitrary file upload vulnerability in the /utils/uploadFile component of Hubert Imoveis e Administracao Ltda Hub v2.0 1.27.3 allows attackers to execute arbitrary code via uploading a crafted PDF file.

Affected Applications in Environment 2

pgAdmin 4 v9.1"

1 device

yt-dlp v2026.03.13 on Python 3.10.11

1 device

Affected Devices 2

NCH-194817 Windows SPOCK2 Windows

References 3

http://hub.com
http://hubert.com
https://github.com/carlos-artmann/vulnerability-research/tree/main/CVE-2025-65783