CVE-2025-2625

Medium CVSS: 5.3

A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the file /system/cms/content/page. The manipulation of the argument orderField/orderDirection leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Vendor

Westboy

Product

Cicadascms

CWE

CWE-74

Yayın Tarihi

2025-03-22 20:15:12

Güncelleme

2025-03-27 00:36:50

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Cicadascms MEDIUM Westboy 2025

Referanslar

https://github.com/IceFoxH/VULN/issues/12 https://vuldb.com/?ctiid.300627 https://vuldb.com/?id.300627 https://vuldb.com/?submit.519296 https://github.com/IceFoxH/VULN/issues/12

Benzer Kayıtlar

Medium

CVE-2025-11289

A vulnerability was determined in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. The impacted elemen…

Medium

CVE-2025-11069

A vulnerability was determined in westboy CicadasCMS 1.0. Affected by this issue is some unknown functionality of the fi…

Medium

CVE-2025-11068

A vulnerability was found in westboy CicadasCMS 1.0. Affected by this vulnerability is an unknown functionality of the f…

Medium

CVE-2025-3816

A vulnerability classified as critical was found in westboy CicadasCMS 2.0. This vulnerability affects unknown code of t…

Medium

CVE-2025-3585

A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the fil…

Medium

CVE-2025-2624

A vulnerability was found in westboy CicadasCMS 1.0. It has been rated as critical. Affected by this issue is some unkno…