CNNVD-202512-2628 Information

CNNVD ID

CNNVD-202512-2628

Related CVE

CVE-2023-53891

• CNNVD Published: 2025-12-15

Description (Chinese)

Blackcat CMS是德国Blackcat公司的一个内容管理系统。 Blackcat CMS 1.4版本存在安全漏洞，该漏洞源于允许经过身份验证的用户向页面内容中注入恶意脚本，可能导致存储型跨站脚本攻击。

Description (English)

Blackcat CMS is a content management system for Blackcat, Germany. Version 1.4 of Blackcat CMS contains a security loophole, which stems from allowing an identified user to inject a malicious script into the page content, which may result in a storage-type cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Blackcat

Published

2025-12-15

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/blackcat-cms-stored-cross-site-scripting-via-page-modification https://www.exploit-db.com/exploits/51604 https://blackcat-cms.org/ https://access.redhat.com/security/cve/cve-2023-53891