CNNVD-202512-582 Information
Dec 04, 2025
cve
CNNVD ID
CNNVD-202512-582
Related CVE
- CNNVD Published: 2025-12-04
Description (Chinese)
xunruicms是XunRuiCMS个人开发者的一个建站框架。 xunruicms 4.7.1及之前版本存在代码问题漏洞,该漏洞源于对文件/admind45f74adbd95.php中组件Email Setting Handler的错误操作,可能导致服务端请求伪造。
Description (English)
xunruicms is a framework for the construction of XunruiCMS by individual developers. xunruicms 4.7.1 and previous versions have a code problem loophole, which stems from the mishandling of Email Setting Handler, component of file/admind45f74adbd95.php, which may result in the forgery of service-level requests.
Hazard Level
High
Vulnerability Type
代码问题
Affected Vendor
个人开发者
Published
2025-12-04
Last Modified
2026-02-24
References
https://vuldb.com/?ctiid.334246 https://vuldb.com/?id.334246 https://github.com/24-2021/vul/blob/main/xunruicms-email_test-SSRF/xunruicms-email_test-SSRF.md https://vuldb.com/?submit.692907
Share on: