CVE-2025-10471

Vulnerability Description

A vulnerability was detected in ZKEACMS 4.3. Impacted is the function Proxy of the file src/ZKEACMS/Controllers/MediaController.cs. Performing manipulation of the argument url results in server-side request forgery. It is possible to initiate the attack remotely. The exploit is now public and may be used.

Vulnerability Details

Published Date

September 15, 2025

Last Modified

October 14, 2025

Source

NVD

CVE-2025-10471

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment