CVE-2025-60445 | XunRuiCMS 4.7.1 SVG File Upload.php cross site scripting

A vulnerability classified as problematic has been found in XunRuiCMS 4.7.1. Affected by this issue is some unknown functionality in the library dayrui/Fcms/Library/Upload.php of the component SVG File Handler. This manipulation causes cross site scripting.

The identification of this vulnerability is CVE-2025-60445. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More