Vulnerabilities

CVE-2025-15375 - EyouCMS arcpagelist Ajax.php unserialize deserialization

2025-12-31 0 views admin

CVE ID : CVE-2025-15375 Published : Dec. 31, 2025, 5:16 a.m. | 1 hour, 43 minutes ago Description : A flaw has been found in EyouCMS up to 1.7.7. The impacted element is the function unserialize of the file application/api/controller/Ajax.php of the component arcpagelist Handler. Executing manipulation of the argument attstr can lead to deserialization. The attack can be launched remotely. The exploit has been published and may be used. The vendor is

CVE Details

CVE ID

CVE-2025-15375

Published

Dec. 31, 2025

Affected Product: php

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-15375php

CVE-2025-15375 - EyouCMS arcpagelist Ajax.php unserialize deserialization

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2025-49358 - WordPress Content Fetcher plugin <= 1.1 - cross site scripting (xss) vulnerability

CVE-2025-62135 - WordPress Responsive Block Control plugin <= 1.2.9 - cross site scripting (xss) ...

CVE-2025-62991 - WordPress Minamaze theme <= 1.10.1 - cross site scripting (xss) vulnerability

CVE-2025-62757 - WordPress WebMan Amplifier plugin <= 1.5.12 - cross site scripting (xss) vulnera...

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting