VYPR
Low severity2.4NVD Advisory· Published Dec 8, 2025· Updated Apr 29, 2026

CVE-2025-14244

CVE-2025-14244

Description

A flaw has been found in GreenCMS 2.3.0603. Affected by this issue is some unknown functionality of the file /Admin/Controller/CustomController.class.php of the component Menu Management Page. This manipulation of the argument Link causes cross site scripting. The attack may be initiated remotely. The exploit has been published and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Greencms/Greencms2 versions
    cpe:2.3:a:njtech:greencms:2.3.0603:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:njtech:greencms:2.3.0603:*:*:*:*:*:*:*
    • (no CPE)range: =2.3.0603

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.