Zkeacms

5 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-10766 MEDIUM This Month

A weakness has been identified in SeriaWei ZKEACMS up to 4.3.cs. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Zkeacms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.1%
CVE-2025-10765 MEDIUM POC This Month

A security flaw has been discovered in SeriaWei ZKEACMS up to 4.3. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SSRF Zkeacms
NVD GitHub VulDB
CVSS 4.0
5.1
EPSS
0.1%
CVE-2025-10764 MEDIUM This Month

A vulnerability was identified in SeriaWei ZKEACMS up to 4.3. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SSRF Zkeacms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.0%
CVE-2025-10471 MEDIUM POC This Month

A vulnerability was detected in ZKEACMS 4.3. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SSRF Zkeacms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.0%
CVE-2025-52239 CRITICAL This Week

An arbitrary file upload vulnerability in ZKEACMS v4.1 allows attackers to execute arbitrary code via a crafted file. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE File Upload Zkeacms
NVD GitHub
CVSS 3.1
9.8
EPSS
0.2%
CVE-2025-10766
EPSS 0% CVSS 5.3
MEDIUM This Month

A weakness has been identified in SeriaWei ZKEACMS up to 4.3.cs. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Zkeacms
NVD GitHub VulDB
CVE-2025-10765
EPSS 0% CVSS 5.1
MEDIUM POC This Month

A security flaw has been discovered in SeriaWei ZKEACMS up to 4.3. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SSRF Zkeacms
NVD GitHub VulDB
CVE-2025-10764
EPSS 0% CVSS 5.3
MEDIUM This Month

A vulnerability was identified in SeriaWei ZKEACMS up to 4.3. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SSRF Zkeacms
NVD GitHub VulDB
CVE-2025-10471
EPSS 0% CVSS 5.3
MEDIUM POC This Month

A vulnerability was detected in ZKEACMS 4.3. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SSRF Zkeacms
NVD GitHub VulDB
CVE-2025-52239
EPSS 0% CVSS 9.8
CRITICAL This Week

An arbitrary file upload vulnerability in ZKEACMS v4.1 allows attackers to execute arbitrary code via a crafted file. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE File Upload Zkeacms
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy