CNNVD-202512-4811 Information

CNNVD ID

CNNVD-202512-4811

Related CVE

CVE-2025-67349

• CNNVD Published: 2025-12-26

Description (Chinese)

FluentCMS是FluentCMS开源的一个内容管理系统。 FluentCMS 1.2.3版本存在安全漏洞，该漏洞源于Add Page功能中head部分输入清理不当，可能导致远程攻击者注入任意脚本标签。

Description (English)

FluentCMS is an open-source content management system for FluentCMS. Version 1.2.3 of FluentCMS contains a security loophole, which stems from the inappropriate clean-up of the head segment of the Add Page function, which may lead to the injection of any script label by the remote assailant.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

FluentCMS

Published

2025-12-26

Last Modified

2026-02-24

References

https://github.com/eoniboogie/CVE_Disclosures/blob/main/CVE-2025-67349/CVE-2025-67349.md https://github.com/fluentcms/FluentCMS/issues/2403 https://access.redhat.com/security/cve/cve-2025-67349