CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-14011

A vulnerability was found in JIZHICMS up to 2.5.5. Impacted is the function commentlist of the file /index.php/admins/Comment/addcomment.html of the component Add Display Name Field. Performing manipulation of the argument aid/tid results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.0%

CVSS Severity

CVSS v3 Score 4.7

CVSS v2 Score 5.8

References

Products affected by CVE-2025-14011

Jizhicms » Jizhicms » Version: 1.4

cpe:2.3:a:jizhicms:jizhicms:1.4
Jizhicms » Jizhicms » Version: 1.5

cpe:2.3:a:jizhicms:jizhicms:1.5
Jizhicms » Jizhicms » Version: 1.5.1

cpe:2.3:a:jizhicms:jizhicms:1.5.1
Jizhicms » Jizhicms » Version: 1.5.2

cpe:2.3:a:jizhicms:jizhicms:1.5.2
Jizhicms » Jizhicms » Version: 1.6

cpe:2.3:a:jizhicms:jizhicms:1.6
Jizhicms » Jizhicms » Version: 1.6.1

cpe:2.3:a:jizhicms:jizhicms:1.6.1
Jizhicms » Jizhicms » Version: 1.6.2

cpe:2.3:a:jizhicms:jizhicms:1.6.2
Jizhicms » Jizhicms » Version: 1.6.3

cpe:2.3:a:jizhicms:jizhicms:1.6.3
Jizhicms » Jizhicms » Version: 1.6.4

cpe:2.3:a:jizhicms:jizhicms:1.6.4
Jizhicms » Jizhicms » Version: 1.6.5

cpe:2.3:a:jizhicms:jizhicms:1.6.5
Jizhicms » Jizhicms » Version: 1.6.6

cpe:2.3:a:jizhicms:jizhicms:1.6.6
Jizhicms » Jizhicms » Version: 1.6.7

cpe:2.3:a:jizhicms:jizhicms:1.6.7
Jizhicms » Jizhicms » Version: 1.7

cpe:2.3:a:jizhicms:jizhicms:1.7
Jizhicms » Jizhicms » Version: 1.7.1

cpe:2.3:a:jizhicms:jizhicms:1.7.1
Jizhicms » Jizhicms » Version: 1.8

cpe:2.3:a:jizhicms:jizhicms:1.8
Jizhicms » Jizhicms » Version: 1.8.1

cpe:2.3:a:jizhicms:jizhicms:1.8.1
Jizhicms » Jizhicms » Version: 1.9

cpe:2.3:a:jizhicms:jizhicms:1.9
Jizhicms » Jizhicms » Version: 1.9.1

cpe:2.3:a:jizhicms:jizhicms:1.9.1
Jizhicms » Jizhicms » Version: 1.9.2

cpe:2.3:a:jizhicms:jizhicms:1.9.2
Jizhicms » Jizhicms » Version: 1.9.3

cpe:2.3:a:jizhicms:jizhicms:1.9.3
Jizhicms » Jizhicms » Version: 1.9.4

cpe:2.3:a:jizhicms:jizhicms:1.9.4
Jizhicms » Jizhicms » Version: 1.9.5

cpe:2.3:a:jizhicms:jizhicms:1.9.5
Jizhicms » Jizhicms » Version: 2.2.5

cpe:2.3:a:jizhicms:jizhicms:2.2.5
Jizhicms » Jizhicms » Version: 2.3.1

cpe:2.3:a:jizhicms:jizhicms:2.3.1
Jizhicms » Jizhicms » Version: 2.3.3

cpe:2.3:a:jizhicms:jizhicms:2.3.3
Jizhicms » Jizhicms » Version: 2.3.4

cpe:2.3:a:jizhicms:jizhicms:2.3.4
Jizhicms » Jizhicms » Version: 2.3.5

cpe:2.3:a:jizhicms:jizhicms:2.3.5
Jizhicms » Jizhicms » Version: 2.3.7

cpe:2.3:a:jizhicms:jizhicms:2.3.7
Jizhicms » Jizhicms » Version: 2.4

cpe:2.3:a:jizhicms:jizhicms:2.4
Jizhicms » Jizhicms » Version: 2.4.0

cpe:2.3:a:jizhicms:jizhicms:2.4.0
Jizhicms » Jizhicms » Version: 2.4.3

cpe:2.3:a:jizhicms:jizhicms:2.4.3
Jizhicms » Jizhicms » Version: 2.4.5

cpe:2.3:a:jizhicms:jizhicms:2.4.5
Jizhicms » Jizhicms » Version: 2.4.6

cpe:2.3:a:jizhicms:jizhicms:2.4.6
Jizhicms » Jizhicms » Version: 2.4.7

cpe:2.3:a:jizhicms:jizhicms:2.4.7
Jizhicms » Jizhicms » Version: 2.4.8

cpe:2.3:a:jizhicms:jizhicms:2.4.8
Jizhicms » Jizhicms » Version: 2.4.9

cpe:2.3:a:jizhicms:jizhicms:2.4.9
Jizhicms » Jizhicms » Version: 2.5.0

cpe:2.3:a:jizhicms:jizhicms:2.5.0
Jizhicms » Jizhicms » Version: 2.5.1

cpe:2.3:a:jizhicms:jizhicms:2.5.1
Jizhicms » Jizhicms » Version: 2.5.2

cpe:2.3:a:jizhicms:jizhicms:2.5.2
Jizhicms » Jizhicms » Version: 2.5.3

cpe:2.3:a:jizhicms:jizhicms:2.5.3
Jizhicms » Jizhicms » Version: 2.5.4

cpe:2.3:a:jizhicms:jizhicms:2.5.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-14011

Products

Pricing

Contact Us