CNNVD-202512-2054 Information

CNNVD ID

CNNVD-202512-2054

Related CVE

CVE-2024-58301

• CNNVD Published: 2025-12-11

Description (Chinese)

Purei CMS是荷兰Purei公司的一个内容管理系统。 Purei CMS 1.0版本存在SQL注入漏洞，该漏洞源于未过滤的用户输入参数存在基于时间的盲SQL注入，可能导致数据库信息泄露或篡改。

Description (English)

Purei CMS is a content management system of the Netherlands firm Purei. Version 1.0 of Purei CMS has an injection loophole in SQL, which stems from the time-based blind SQL injection of unfiltered user input parameters, which may lead to the disclosure or manipulation of database information.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

Purei

Published

2025-12-11

Last Modified

2026-02-24

References

https://purei.com https://www.exploit-db.com/exploits/51929 https://www.vulncheck.com/advisories/purei-cms-sql-injection-via-multiple-vulnerable-endpoints