Vulnerability Description
PublicCMS v5.202506.d and earlier is vulnerable to stored XSS. Uploaded PDFs can contain JavaScript payloads and bypass PDF security checks in the backend CmsFileUtils.java. If a user uploads a PDF file containing a malicious payload to the system and views it, the embedded JavaScript payload can be triggered, resulting in issues such as credential theft, arbitrary API execution, and other security concerns. This vulnerability affects all file upload endpoint, including /cmsTemplate/save, /file/doUpload, /cmsTemplate/doUpload, /file/doBatchUpload, /cmsWebFile/doUpload, etc.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Publiccms | Publiccms | <= 5.202506.d |
Related Weaknesses (CWE)
References
- https://github.com/sanluan/PublicCMS/issues/103ExploitIssue TrackingVendor Advisory
FAQ
What is CVE-2025-69437?
CVE-2025-69437 is a vulnerability with a CVSS score of 8.7 (HIGH). PublicCMS v5.202506.d and earlier is vulnerable to stored XSS. Uploaded PDFs can contain JavaScript payloads and bypass PDF security checks in the backend CmsFileUtils.java. If a user uploads a PDF fi...
How severe is CVE-2025-69437?
CVE-2025-69437 has been rated HIGH with a CVSS base score of 8.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-69437?
Check the references section above for vendor advisories and patch information. Affected products include: Publiccms Publiccms.