{"id":65268,"date":"2025-06-29T08:32:16","date_gmt":"2025-06-29T05:02:16","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-6839-conjure-position-department-service-quality-evaluation-system-less-bootstrap-mixin-head-php-backdoor-remote-code-execution\/"},"modified":"2025-06-29T08:32:16","modified_gmt":"2025-06-29T05:02:16","slug":"cve-2025-6839-conjure-position-department-service-quality-evaluation-system-less-bootstrap-mixin-head-php-backdoor-remote-code-execution","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-6839-conjure-position-department-service-quality-evaluation-system-less-bootstrap-mixin-head-php-backdoor-remote-code-execution\/","title":{"rendered":"CVE-2025-6839 &#8211; Conjure Position Department Service Quality Evaluation System Less Bootstrap Mixin Head PHP Backdoor Remote Code Execution"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-6839<br \/>\n<br \/>\n<strong>Published : <\/strong> June 29, 2025, 2:15 a.m. | 2\u00a0hours, 24\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>A vulnerability, which was classified as critical, has been found in Conjure Position Department Service Quality Evaluation System up to 1.0.11. Affected by this issue is the function eval of the file public\/assets\/less\/bootstrap-less\/mixins\/head.php. The manipulation of the argument payload leads to backdoor. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 6.3 | MEDIUM<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-6839 Published : June 29, 2025, 2:15 a.m. | 2\u00a0hours, 24\u00a0minutes ago Description : A vulnerability, which was classified as critical, has been found in Conjure Position Department Service Quality Evaluation System up to 1.0.11. Affected by this issue is the function eval of the file public\/assets\/less\/bootstrap-less\/mixins\/head.php. The manipulation of the argument &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-65268","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/65268","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=65268"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/65268\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=65268"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=65268"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=65268"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}