CVE-2025-15130

Name of the Vulnerable Software and Affected Versions shanyu SyCms versions up to a242ef2d194e8bb249dc175e7c49f2c1673ec921

Description A code injection issue exists in shanyu SyCms. The issue is located in the addPost function within the Application/Admin/Controller/FileManageController.class.php file of the Administrative Panel component. This manipulation can be carried out remotely. The exploit for this issue has been publicly disclosed. This vulnerability affects products that are no longer supported by the maintainer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.