CNNVD-202509-1588 Information

CNNVD ID

CNNVD-202509-1588

Related CVE

CVE-2025-56556

• CNNVD Published: 2025-09-11

Description (Chinese)

Subrion CMS是Subrion团队的一套基于PHP的内容管理系统（CMS）。该系统可被集成到网站，并支持多种扩展插件等。 Subrion CMS 4.2.1版本存在安全漏洞，该漏洞源于内置Run SQL Query功能权限控制不足，可能导致权限提升。

Description (English)

Subrion CMS is a PHP-based content management system (CMS) for the Subrion team. The system can be integrated into the website and support a variety of extension plugins, etc. Subrion CMS 4.2.1 has a security loophole, which stems from the in-house control of Run SQL Query ’ s functional privileges, which may lead to an increase in privileges.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Subrion

Published

2025-09-11

Last Modified

2026-02-24

References

https://github.com/intelliants/subrion/issues/913