CVE-2025-10106 | yanyutao0402 ChanCMS up to 3.3.1 /cms/collect/search keyword sql injection

A vulnerability categorized as critical has been discovered in yanyutao0402 ChanCMS up to 3.3.1. This affects an unknown part of the file /cms/collect/search. Such manipulation of the argument keyword leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-10106. The attack can be launched remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More