CVE-2025-14837 | ZZCMS 2025 Backend Website Settings /admin/siteconfig.php stripfxg icp code injection

A vulnerability was found in ZZCMS 2025. It has been declared as critical. Affected by this issue is the function stripfxg of the file /admin/siteconfig.php of the component Backend Website Settings Module. Such manipulation of the argument icp leads to code injection.

This vulnerability is documented as CVE-2025-14837. The attack can be executed remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More