CNNVD-202506-3356 Information

CNNVD ID

CNNVD-202506-3356

Related CVE

CVE-2025-6735

• CNNVD Published: 2025-06-26

Description (Chinese)

Juzaweb CMS是Juzaweb个人开发者的一个基于 Laravel 框架和 Web 平台开发的内容管理系统。 juzaweb CMS 3.4.2版本存在安全漏洞，该漏洞源于对文件/admin-cp/imports的错误操作导致授权不当。

Description (English)

Juzaweb CMS is a content management system developed by Juzaweb personal developers based on the Laravel framework and the Web platform. There is a security loophole in version juzaweb CMS 3.4.2, which stems from the mishandling of the document/admin-cp/imports, resulting in improper authorization.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Live Support

Published

2025-06-26

Last Modified

2026-02-24

References

https://nvd.nist.gov/vuln/detail/CVE-2025-6735