CNNVD-202512-3950 Information

CNNVD ID

CNNVD-202512-3950

Related CVE

CVE-2025-65837

• CNNVD Published: 2025-12-22

Description (Chinese)

PublicCMS是中国PublicCMS公司的一套使用Java语言编写的开源内容管理系统（CMS）。 PublicCMS V5.202506.b版本存在安全漏洞，该漏洞源于内容搜索模块容易受到跨站脚本攻击。

Description (English)

PublicCMS is an open-source content management system (CMS) developed in Java by PublicCMS, China. PublicCMS V5.2020606.b contains a security loophole that stems from the vulnerability of the content search module to cross-site script attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PublicCMS

Published

2025-12-22

Last Modified

2026-02-24

References

https://github.com/Hyperkopite/PublicCMS_Vulns/blob/main/XSS_1.md https://github.com/sanluan/PublicCMS/issues/100 https://access.redhat.com/security/cve/cve-2025-65837

Patch

https://www.publiccms.com/download.html