CVE-2025-10105 | yanyutao0402 ChanCMS up to 3.3.1 /cms/article/search keyword sql injection

Inserito da Angelo Barbosa | Set 8, 2025 | CVE

A vulnerability was found in yanyutao0402 ChanCMS up to 3.3.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /cms/article/search. This manipulation of the argument keyword causes sql injection.

This vulnerability is handled as CVE-2025-10105. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2025-10105 | yanyutao0402 ChanCMS up to 3.3.1 /cms/article/search keyword sql injection

Post correlati

CVE-2024-10039 | Keycloak mTLS improper authentication

CVE-2024-42604 | Pligg CMS 2.0.2 cross-site request forgery

CVE-2024-4184 | OpenText Application Automation Tools Plugin up to 24.1.0 on Jenkins XML File XpathReader.java xml external entity reference

CVE-2024-34035 | O-RAN Near Realtime RIC – H-Release sim-e2-interface/e2mgr denial of service