CNNVD-202507-1898 Information

CNNVD ID

CNNVD-202507-1898

Related CVE

CVE-2025-51651

• CNNVD Published: 2025-07-14

Description (Chinese)

mccms（漫城CMS）是中国烟雨江南（chshcms）个人开发者的一个快速建站系统。 mccms v2.7.0版本存在安全漏洞，该漏洞源于组件/admin/Backups.php存在经过验证的任意文件下载，可能导致下载任意文件。

Description (English)

mccms (CMS) is a fast-track station system for the personal developers of chshcms in China. Version mccms v2.7.0 contains a security loophole, which stems from the existence of a verified, random file download, which may result in the downloading of any document.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Live Support

Published

2025-07-14

Last Modified

2026-02-24

References

https://github.com/Y4y17/CVE/blob/main/Arbitrary%20file%20download%20vulnerability.md https://access.redhat.com/security/cve/cve-2025-51651