GHSA-5pm9-r2m8-rcmj

Critical

GHSA-5pm9-r2m8-rcmj

(CVE-2025-58048)

Published Jun 22, 2026

CVSS

9.9

CRITICAL

EPSS

Exploit Prediction Scoring System — the modeled probability of in-the-wild exploitation in the next 30 days.

—

Affected packages

Summary

Paymenter vulnerable to Remote Code Execution via public file uploads

Developer impact

Recommended action

Affected packages

Sources