← volver
CVE-2025-7748

ZCMS Create Article Page cross site scripting

CVSS 5.1 MEDIUMEPSS 0.2%CWE-79CWE-94
A vulnerability classified as problematic was found in ZCMS 3.6.0. This vulnerability affects unknown code of the component Create Article Page. The manipulation of the argument Title leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P
Productos afectados
n/a · ZCMS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/falling-snow1/CVE2/https://vuldb.com/?ctiid.316738https://vuldb.com/?id.316738https://vuldb.com/?submit.615488