2 matches found
CVE-2025-65868
XML external entity XXE injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST request...
CVE-2025-65868
CVE-2025-65868 affects eyoucms v1.7.1 and is caused by an XML External Entity (XXE) injection via crafted POST bodies, leading to DoS. Public sources (NVD, RH, EUVD, CNNVD, etc.) consistently cite XXE as the underlying issue with high/severe impact (CVE CVSS3.1: base 7.5/ HIGH; CNA 9.1/ CRITICAL ...