CVE-2025-45887 | Yifang CMS 2.0.2 getRemoteContent server-side request forgery

Inserito da Angelo Barbosa | Mag 9, 2025 | CVE

A vulnerability was found in Yifang CMS 2.0.2. It has been classified as critical. This affects an unknown part of the file /api/file/getRemoteContent. The manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2025-45887. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-45887 | Yifang CMS 2.0.2 getRemoteContent server-side request forgery

Post correlati

CVE-2024-28793 | Team Concert Git Plugin up to 2.0.4 on Jenkins Rational Team Concert Server URI cross site scripting

CVE-2024-12725 | Clasify Classified Listing Plugin up to 1.0.7 on WordPress cross site scripting

CVE-2025-5184 | Summer Pearl Group Vacation Rental Management Platform up to 1.0.1 HTTP Response Header information disclosure

CVE-2025-27675 | Vasion Print Virtual Appliance Host OpenID Privilege Escalation