← back
CVE-2025-7748

ZCMS Create Article Page cross site scripting

CVSS 5.1 MEDIUMEPSS 0.2%CWE-79CWE-94
A vulnerability classified as problematic was found in ZCMS 3.6.0. This vulnerability affects unknown code of the component Create Article Page. The manipulation of the argument Title leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P
Affected products
n/a · ZCMS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/falling-snow1/CVE2/https://vuldb.com/?ctiid.316738https://vuldb.com/?id.316738https://vuldb.com/?submit.615488