CVE-2025-10397 | Magicblack MacCMS 2025.1000.4050 API cjurl server-side request forgery

Inserito da Angelo Barbosa | Set 13, 2025 | CVE

A vulnerability marked as critical has been reported in Magicblack MacCMS 2025.1000.4050. This affects an unknown part of the component API Handler. The manipulation of the argument cjurl leads to server-side request forgery.

This vulnerability is documented as CVE-2025-10397. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2025-10397 | Magicblack MacCMS 2025.1000.4050 API cjurl server-side request forgery

Post correlati

CVE-2025-4412 | SparkLabs Viscosity up to 1.11.4 on macOS viscosity_openvpn default permission

CVE-2024-9002 | Schneider Electric Easergy Studio up to 9.3.1 privileges management (SEVD-2024-282-03)

CVE-2025-9413 | lostvip-com ruoyi-go up to 2.1 system_router.go SelectListByPage orderByColumn/isAsc sql injection

CVE-2022-49043 | xmlsoft libxml2 up to 2.10.x xinclude.c xmlXIncludeAddNode use after free (ID 17467)