CVE-2025-10395 | Magicblack MacCMS 2025.1000.4050 Scheduled Task col_url cjurl server-side request forgery

Inserito da Angelo Barbosa | Set 13, 2025 | CVE

A vulnerability identified as critical has been detected in Magicblack MacCMS 2025.1000.4050. Affected by this vulnerability is the function col_url of the component Scheduled Task Handler. Performing manipulation of the argument cjurl results in server-side request forgery.

This vulnerability is cataloged as CVE-2025-10395. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-10395 | Magicblack MacCMS 2025.1000.4050 Scheduled Task col_url cjurl server-side request forgery

Post correlati

CVE-2024-46625 | InfoDom Performa 365 4.0.1 SVG File /documentCache/upload unrestricted upload

CVE-2024-13034 | code-projects Chat System 1.0 /admin/update_user.php name cross site scripting

CVE-2024-51180 | PHPGurukul IFSC Code Finder Project 1.0 /ifscfinder/index.php searchifsccode cross site scripting

CVE-2024-32409 | SEMCMS 4.8 cross site scripting