CNNVD-202511-2716 Information

CNNVD ID

CNNVD-202511-2716

Related CVE

CVE-2025-61168

• CNNVD Published: 2025-11-25

Description (Chinese)

SIGB PMB是SIGB公司的一个开源集成图书馆管理系统。 SIGB PMB v8.0.1.14版本存在安全漏洞，该漏洞源于组件cms_rest.php反序列化任意文件，可能导致执行任意代码。

Description (English)

SIGB PMB is an open source integrated library management system for SIGB. Version SIGB PMB v.8.01.14 contains a security loophole that stems from the anti-sequencing of any file of component cms rest.php, which may result in the implementation of any code.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

SIGB

Published

2025-11-25

Last Modified

2026-02-24

References

https://gist.github.com/ZanyMonk/446f6875a2ceb3decef5ff1176428f9e http://pmb.com https://forge.sigb.net/projects/pmb/wiki/Changelog_801#S%C3%A9curit%C3%A9-2 http://sigb.com https://access.redhat.com/security/cve/cve-2025-61168

Patch

https://sigb.com/