All 9 CVE vulnerabilities found in CicadasCMS, with AI-generated Chinese analysis, references, and POCs.
Vendor: westboy
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-11289 | westboy CicadasCMS Template Management TemplateFileServiceImpl.java save cross site scripting CWE-79 | 2.4 | Low | 2025-10-05 |
| CVE-2025-11069 | westboy CicadasCMS Add Department save cross site scripting CWE-79 | 2.4 | Low | 2025-09-27 |
| CVE-2025-11068 | westboy CicadasCMS save cross site scripting CWE-79 | 2.4 | Low | 2025-09-27 |
| CVE-2025-3816 | westboy CicadasCMS Scheduled Task save os command injection CWE-78 | 4.7 | Medium | 2025-04-19 |
| CVE-2025-3585 | westboy CicadasCMS JSP Parser upload unrestricted upload CWE-434 | 6.3 | Medium | 2025-04-14 |
| CVE-2025-2625 | westboy CicadasCMS page sql injection CWE-89 | 6.3 | Medium | 2025-03-22 |
| CVE-2025-2624 | westboy CicadasCMS save sql injection CWE-89 | 6.3 | Medium | 2025-03-22 |
| CVE-2025-2623 | westboy CicadasCMS save cross site scripting CWE-79 | 3.5 | Low | 2025-03-22 |
| CVE-2025-1556 | westboy CicadasCMS Template Management system deserialization CWE-502 | 4.7 | Medium | 2025-02-22 |
All 9 known CVE vulnerabilities affecting CicadasCMS with full Chinese analysis, references, and POCs where available.