CNNVD-202507-2389 Information

CNNVD ID

CNNVD-202507-2389

Related CVE

CVE-2025-52162

• CNNVD Published: 2025-07-18

Description (Chinese)

Agorum core open是德国Agorum公司的一款企业内容管理系统。 Agorum core open 11.9.2之前版本和11.10.1之前版本存在安全漏洞，该漏洞源于RSSReader端点处理不当，可能导致XML外部实体攻击。

Description (English)

Agorum core open is an enterprise content management system of Agorum, Germany. There is a security loophole in previous versions of Agorum core open 11.9.2 and in previous versions of 11.10.1 resulting from the inappropriate handling of RSSReader endpoints, which could lead to an attack by an outside XML entity.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Agorum

Published

2025-07-18

Last Modified

2026-02-24

References

http://agorum.com https://herolab.usd.de/security-advisories/usd-2025-0024/ https://access.redhat.com/security/cve/cve-2025-52162

Patch

https://www.agorum.com/agorum-core/download-portal