CVE-2025-7949 | Sanluan PublicCMS up to 5.202506.a preview.html url/file redirect (87/88)

A vulnerability was found in Sanluan PublicCMS up to 5.202506.a. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file publiccms-parent/publiccms/src/main/resources/templates/admin/cmsDiy/preview.html. The manipulation of the argument url/file leads to open redirect.

This vulnerability is known as CVE-2025-7949. The attack can be launched remotely. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-7949 | Sanluan PublicCMS up to 5.202506.a preview.html url/file redirect (87/88)

Post correlati

CVE-2024-51054 | PHPGurukul Online Marriage Registration System 1.0 POST Request Parameter /omrs/admin/search.php searchdata cross site scripting

CVE-2024-23515 | Cincopa Post Video Players Plugin up to 1.159 on WordPress cross-site request forgery

CVE-2024-30265 | voila file inclusion

CVE-2023-51677 | Magazine3 Schema & Structured Data for WP & AMP Plugin up to 1.23 on WordPress cross site scripting