Security Advisory

CVE-2025-10115

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-09 00:32:09

Last updated 2025-09-09 19:22:00

Assigner VulDB

State PUBLISHED

Description

A vulnerability was determined in SiempreCMS up to 1.3.6. This affects an unknown part of the file user_search_ajax.php. This manipulation of the argument name/userName causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized.

← Browse all CVEs View on cve.org ↗