CVE-2025-25960 Information

Description

Cross Site Scripting vulnerability in phpcmsv9 v.9.6.3 allows a remote attacker to escalate privileges via the menu interface of the member center of the background administrator.

Reference

https://github.com/Abel-Lan/phpcms/issues/2