CNNVD-202512-575 Information
Dec 04, 2025
cve
CNNVD ID
CNNVD-202512-575
Related CVE
- CNNVD Published: 2025-12-04
Description (Chinese)
xunruicms是XunRuiCMS个人开发者的一个建站框架。 xunruicms 4.7.1及之前版本存在代码问题漏洞,该漏洞源于对文件admin79f2ec220c7e.php中参数v的错误操作,可能导致服务端请求伪造。
Description (English)
xunruicms is a framework for the construction of XunruiCMS by individual developers. xunruicms 4.7.1 and previous versions had a code problem loophole, which stemmed from the incorrect operation of parameter v in document admin79f2ec220c7e.php, which could lead to the forgery of service requests.
Hazard Level
High
Vulnerability Type
代码问题
Affected Vendor
个人开发者
Published
2025-12-04
Last Modified
2026-02-24
References
https://github.com/24-2021/vul/blob/main/xunruicms-test_site_domain-SSRF/xunruicms-test_site_domain-SSRF.md https://vuldb.com/?ctiid.334250 https://vuldb.com/?id.334250 https://vuldb.com/?submit.692915
Share on: