CVE-2025-10787 | MuYuCMS up to 2.7 Add Fiend Link /index/index.html Link URL server-side request forgery (ICXV34)

Inserito da Angelo Barbosa | Set 21, 2025 | CVE

A vulnerability was found in MuYuCMS up to 2.7. It has been rated as critical. Impacted is an unknown function of the file /index/index.html of the component Add Fiend Link Handler. Performing manipulation of the argument Link URL results in server-side request forgery.

This vulnerability was named CVE-2025-10787. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-10787 | MuYuCMS up to 2.7 Add Fiend Link /index/index.html Link URL server-side request forgery (ICXV34)

Post correlati

CVE-2025-6681 | Fan Page Plugin up to 1.0.1 on WordPress width cross site scripting

CVE-2024-43089 | Google Android 12/12L/13/14/15 MediaProvider.java updateInternal permission

CVE-2024-41906 | Siemens SINEC Traffic Analyzer up to 1.x HTTP Response cache containing sensitive information (ssa-716317)

CVE-2023-48359 | Unisoc S8000 Autotest Driver out-of-bounds write