CVE-2025-2043 – LinZhaoguan pb-cms Remote Deserialization Vulnerability

March 7, 2025
12:16 am

CVE ID : CVE-2025-2043

Published : March 6, 2025, 10:15 p.m. | 1 hour, 44 minutes ago

Description : A vulnerability was found in LinZhaoguan pb-cms 1.0.0 and classified as critical. This issue affects some unknown processing of the file /admin#themes of the component Add New Topic Handler. The manipulation of the argument Topic Key leads to deserialization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 4.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-2043 – LinZhaoguan pb-cms Remote Deserialization Vulnerability

Elvescore.io

Recent Posts

CVE-2024-10321 – Elementor WidgetKit Sensitive Information Exposure

CVE-2024-13816 – Aiomatic WordPress Unauthenticated Privilege Escalation Vulnerability

CVE-2024-13882 – WordPress Aiomatic Arbitrary File Upload Vulnerability

CVE-2025-0177 – Javo Core WordPress Privilege Escalation

CVE-2025-1287 – Elementor Addons Stored Cross-Site Scripting Vulnerability

CVE-2024-12114 – FooGallery WordPress Insecure Direct Object Reference

CVE-2025-2043 – LinZhaoguan pb-cms Remote Deserialization Vulnerability

CVE-2025-2043 – LinZhaoguan pb-cms Remote Deserialization Vulnerability