CNNVD-202512-2625 Information

CNNVD ID

CNNVD-202512-2625

Related CVE

CVE-2023-53892

• CNNVD Published: 2025-12-15

Description (Chinese)

Blackcat CMS是德国Blackcat公司的一个内容管理系统。 Blackcat CMS 1.4版本存在安全漏洞，该漏洞源于允许经过身份验证的管理员通过jquery插件管理器上传恶意PHP文件，可能导致远程代码执行。

Description (English)

Blackcat CMS is a content management system for Blackcat, Germany. There is a security loophole in version 1.4 of Blackcat CMS, which stems from allowing a certified administrator to upload a malicious PHP file through the jquery plugin manager, which may result in remote code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Blackcat

Published

2025-12-15

Last Modified

2026-02-24

References

https://blackcat-cms.org/ https://www.exploit-db.com/exploits/51605 https://www.vulncheck.com/advisories/blackcat-cms-remote-code-execution-via-jquery-plugin-manager https://access.redhat.com/security/cve/cve-2023-53892