CNNVD-202509-3202 Information

CNNVD ID

CNNVD-202509-3202

Related CVE

CVE-2025-10765

• CNNVD Published: 2025-09-21

Description (Chinese)

ZKEACMS是ZKEASOFT开源的一个视觉设计、所见即所得的内容管理系统。 ZKEACMS 4.3及之前版本存在代码问题漏洞，该漏洞源于SEOSuggestions组件中CheckPage/Suggestions函数存在缺陷，可能导致服务端请求伪造攻击。

Description (English)

ZKEACMS is a visual, visible and generated content management system for ZKEASOFT. ZKEACMS 4.3 and previous versions had a code problem loophole, which stemmed from defects in the CheckPage/Suggestions function in the SEOSIGtions component, which could result in a service request for a false attack.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

ZKEASOFT

Published

2025-09-21

Last Modified

2026-02-24

References

https://vuldb.com/?id.325120 https://vuldb.com/?submit.647952 https://vuldb.com/?ctiid.325120 https://github.com/wooyun123/wooyun/issues/1 https://access.redhat.com/security/cve/cve-2025-10765