CNNVD-202511-1318 Information

CNNVD ID

CNNVD-202511-1318

Related CVE

CVE-2025-63645

• CNNVD Published: 2025-11-12

Description (Chinese)

pH7 Social Dating Builder是pH7 Social Dating CMS (pH7CMS)开源的一个社交约会系统。 pH7 Social Dating Builder 17.9.1版本存在安全漏洞，该漏洞源于消息系统未清理用户提交内容，可能导致存储型跨站脚本攻击。

Description (English)

PH7 Social Dating Builder is a social dating system open to pH7 Social Dating CMS (pH7CMS). The security gap in version 17.9.1 of pH7 Social Dating Builder is due to the failure of the message system to clean up user submissions, which may result in a storage-type cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Published

2025-11-12

Last Modified

2026-02-24

References

https://drive.google.com/drive/folders/1u2o2NWHzClSjsNzhtkk1QvaDGisAXs2v https://medium.com/@rudranshsinghrajpurohit/cve-2025-63645-stored-cross-site-scripting-xss-vulnerability-in-ph7-social-dating-cms-8073ac4be5be