PT-2026-34666 · Jizhicms · Jizhicms

Published

2026-04-23

·

Updated

2026-04-23

·

CVE-2025-50229

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Jizhicms v2.5.4 is vulnerable to SQL injection in the product editing module.

Exploit

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2025-50229

Affected Products

Jizhicms