CNNVD-202512-3266 Information

CNNVD ID

CNNVD-202512-3266

Related CVE

CVE-2025-67172

• CNNVD Published: 2025-12-17

Description (Chinese)

RiteCMS是一个网站CMS。 RiteCMS 3.1.0版本存在安全漏洞，该漏洞源于parse_special_tags函数存在缺陷，可能导致经过身份验证的远程代码执行。

Description (English)

RiteCMS is a website CMS. There is a security loophole in version 3.1.0 of RiteCMS, which stems from the defects in the Parse special tags function, which may lead to the execution of an authentication remote code.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-12-17

Last Modified

2026-02-24

References

https://github.com/handylulu/RiteCMS/ https://github.com/handylulu/RiteCMS/blob/master/cms/includes/functions.inc.php#L297 https://github.com/handylulu/RiteCMS/blob/master/cms/includes/functions.inc.php#L504 https://github.com/mbiesiad/vulnerability-research/tree/main/CVE-2025-67172 https://access.redhat.com/security/cve/cve-2025-67172