CNNVD-202512-4014 Information

CNNVD ID

CNNVD-202512-4014

Related CVE

CVE-2025-15005

• CNNVD Published: 2025-12-22

Description (Chinese)

Webzyme CouchCMS是印度Webzyme公司的一个内容管理系统。 Webzyme CouchCMS 2.4及之前版本存在安全漏洞，该漏洞源于组件reCAPTCHA Handler中文件couch/config.example.php使用硬编码加密密钥，可能导致安全风险。

Description (English)

Webzyme CouchCMS is a content management system for Webzyme, India. Webzyme CouchCMS 2.4 and previous versions have a security loophole, which stems from the use of hard-coded encryption keys in the document Couch/config.example.php in component reCAPTCHA Handler, which may pose a security risk.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

Webzyme

Published

2025-12-22

Last Modified

2026-02-24

References

https://vuldb.com/?submit.718998 https://note-hxlab.wetolink.com/share/jNNcrdrNyCvl#-span–strong-proof-of-concept—strong—span- https://vuldb.com/?ctiid.337711 https://vuldb.com/?id.337711 https://access.redhat.com/security/cve/cve-2025-15005