CVE-2025-65837

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions PublicCMS version 5.202506.b

Description PublicCMS version 5.202506.b has a Cross Site Scripting (XSS) issue in the Content Search module. The issue allows for the injection of malicious scripts through the Content Search functionality. The vulnerable component is the Content Search module.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2025-65837

Affected Products

Publiccms

CVE-2025-65837

Weakness Enumeration

Related Identifiers

Affected Products

References · 6