CVE-2025-25760 Information

Description

A Server-Side Request Forgery (SSRF) in the component admin_webgather.php of SUCMS v1.0 allows attackers to access internal data and services via a crafted GET request.

Reference

https://github.com/147536951/Qianyi-learn/blob/main/SUCMS2.pdf