A vulnerability has been found in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab and classified as problematic. The impacted element is the function
Save
of the file src/main/java/com/zhiliao/common/template/TemplateFileServiceImpl.java of the component Template Management Page. This manipulation causes cross site scripting.
The identification of this vulnerability is CVE-2025-11289. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.