CVE-2025-54790 | humhub cfiles up to 0.16.9 sql injection (GHSA-rfvq-g9rm-pgqj / EUVD-2025-23412)
A vulnerability, which was classified as critical, has been found in humhub cfiles up to 0.16.9. This vulnerability affects unknown code. Performing manipulation results in sql injection.
This vulnerability is known as CVE-2025-54790. Remote exploitation of the attack is possible. No exploit is available.
It is advisable to upgrade the affected component.