CNNVD-202507-2244 Information

CNNVD ID

CNNVD-202507-2244

Related CVE

CVE-2025-52367

• CNNVD Published: 2025-07-16

Description (Chinese)

PivotX是PivotX开源的一个应用程序。 PivotX 3.0.0 RC3版本存在安全漏洞，该漏洞源于页面创建过程中，容易受到存储型跨站脚本攻击。

Description (English)

PivotX is an application from the Open Source of PivotX. The PivotX 3.0.0 version of RC3 contains a security loophole, which stems from the creation of the page and is vulnerable to storage-type cross-site script attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PivotX

Published

2025-07-16

Last Modified

2026-02-24

References

https://medium.com/@hayton1088/cve-2025-52367-stored-xss-to-rce-via-privilege-escalation-in-pivotx-cms-v3-0-0-rc-3-a1b870bcb7b3 http://pivotx.com https://access.redhat.com/security/cve/cve-2025-52367 https://www.exploit-db.com/exploits/52361 https://cxsecurity.com/issue/WLB-2025080012