CNNVD-202512-032 Information
Dec 01, 2025
cve
CNNVD ID
CNNVD-202512-032
Related CVE
- CNNVD Published: 2025-12-01
Description (Chinese)
PublicCMS是中国PublicCMS公司的一套使用Java语言编写的开源内容管理系统(CMS)。 PublicCMS V5.202506.b版本存在安全漏洞,该漏洞源于CkEditorAdminController存在跨站请求伪造。
Description (English)
PublicCMS is an open-source content management system (CMS) developed in Java by PublicCMS, China. There is a security loophole in PublicCMS V5.20206.b, which originates from the existence of CkeEditor AdminController’s cross-site request for forgery.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
PublicCMS
Published
2025-12-01
Last Modified
2026-02-24
References
https://github.com/Hyperkopite/PublicCMS_Vulns/blob/main/CSRF_1.md https://github.com/sanluan/PublicCMS/issues/102 https://access.redhat.com/security/cve/cve-2025-65840
Patch
https://github.com/sanluan/PublicCMS/releases
Share on: