3 matches found
CVE-2025-5327
creationtimestamp| type| source ---|---|--- 2025-05-29 21:06:07+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqdmo7v6neg2 2025-05-30 00:30:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqdy4wrcvx2e...
CVE-2025-5327 chshcms mccms Gf.php index server-side request forgery
A vulnerability was found in chshcms mccms 2.7. It has been classified as critical. This affects the function index of the file sys/apps/controllers/api/Gf.php. The manipulation of the argument pic leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-5327
CVE-2025-5327 affects the chshcms mccms 2.7 platform. The issue resides in the index function of sys/apps/controllers/api/Gf.php where manipulating the parameter pic triggers a server-side request forgery (SSRF). Attacks are described as removable/remote, and the exploit is publicly disclosed. Th...