CVE-2025-10765

Name of the Vulnerable Software and Affected Versions SeriaWei ZKEACMS versions prior to 4.3

Description A security flaw has been discovered in the CheckPage/Suggestions function within the SEOSuggestions component of SeriaWei ZKEACMS. Manipulation of this function, located in the cms-v4.3wwwrootPluginsZKEACMS.SEOSuggestionsZKEACMS.SEOSuggestions.dll library, can lead to server-side request forgery (SSRF). This issue is remotely exploitable. The exploit is publicly available.

Recommendations Update SeriaWei ZKEACMS to version 4.3 or later. As a temporary workaround, consider restricting access to the CheckPage/Suggestions function until a patch is available.