Medium severity6.3NVD Advisory· Published Mar 1, 2025· Updated Jun 17, 2026
CVE-2025-1799
CVE-2025-1799
Description
A vulnerability, which was classified as critical, was found in Zorlan SkyCaiji 2.9. This affects the function previewAction of the file vendor/skycaiji/app/admin/controller/Tool.php. The manipulation of the argument data leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Affected products
2Patches
Vulnerability mechanics
References
4- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- github.com/sheratan4/cve/issues/6nvdBroken Link
- vuldb.comnvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.