CNNVD-202506-3371 Information

CNNVD ID

CNNVD-202506-3371

Related CVE

CVE-2025-6736

• CNNVD Published: 2025-06-26

Description (Chinese)

Juzaweb CMS是Juzaweb个人开发者的一个基于 Laravel 框架和 Web 平台开发的内容管理系统。 juzaweb CMS 3.4.2版本存在安全漏洞，该漏洞源于对文件/admin-cp/theme/install的错误操作导致授权不当。

Description (English)

Juzaweb CMS is a content management system developed by Juzaweb personal developers based on the Laravel framework and the Web platform. There is a security loophole in version Juzaweb CMS 3.4.2, which stems from the incorrect handling of the document/admin-cp/theme/install, resulting in an improper authorization.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Live Support

Published

2025-06-26

Last Modified

2026-02-24

References

https://nvd.nist.gov/vuln/detail/CVE-2025-6736