Medium severity4.7NVD Advisory· Published Sep 14, 2025· Updated Apr 29, 2026
CVE-2025-10397
CVE-2025-10397
Description
A vulnerability was identified in Magicblack MacCMS 2025.1000.4050. This affects an unknown part of the component API Handler. The manipulation of the argument cjurl leads to server-side request forgery. The attack can be initiated remotely. The exploit is publicly available and might be used.
Affected products
2Patches
Vulnerability mechanics
References
4- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- github.com/August829/Yu/blob/main/58ead8e7e08bfb018.mdnvdBroken Link
- vuldb.comnvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.