CVE-2025-65602
9.8CRITICALA template injection vulnerability in the /vip/v1/file/save component of ChanCMS v3.3.4 allows attackers to execute arbitrary code via a crafted POST request.
Опубликовано: 12/10/2025Обновлено: 12/18/2025
Описание
A template injection vulnerability in the /vip/v1/file/save component of ChanCMS v3.3.4 allows attackers to execute arbitrary code via a crafted POST request.
ИИ-АнализНа базе ИИ
Затронутые продукты
chancmschancms
3.3.4