CVE-2025-3816 – Westboy CicadasCMS OS Command Injection Vulnerability

April 20, 2025

CVE ID : CVE-2025-3816

Published : April 19, 2025, 6:15 p.m. | 20 hours, 34 minutes ago

Description : A vulnerability classified as critical was found in westboy CicadasCMS 2.0. This vulnerability affects unknown code of the file /system/schedule/save of the component Scheduled Task Handler. The manipulation leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 4.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3822 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

Next Article CVE-2025-3808 – Zhenfeng13 My-BBS Cross-Site Request Forgery Vulnerability

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

ChatGPT now has an agent mode

Scrum Alliance and Kanban University partner to offer new course that teaches both methodologies

Is ChatGPT down? You’re not alone. Here’s what OpenAI is saying

I found a tablet that could replace my iPad and Kindle – and it’s worth every penny

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

Execute Ping Commands and Get Back Structured Data in PHP

Execute Ping Commands and Get Back Structured Data in PHP

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

Microsoft confirms active cyberattacks on SharePoint servers

How to Manually Check & Install Windows 11 Updates (Best Guide)

CVE-2025-3816 – Westboy CicadasCMS OS Command Injection Vulnerability

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket Tactics

Dev Hackathon: Reusable Creativity on Wix Studio

Control Statements in C: A Comprehensive Guide

OpenAI shifts to Google for cloud computing support as Microsoft partnership falters, despite Sam Altman’s “compute-sufficient” claim

I’ve become a big HP fan after reviewing this powerful and premium enterprise AI laptop

FireEye EDR Agent Vulnerability Let Attackers Inject Malicious Code

VPBank Builds OpenAPI Platform With MongoDB

CVE-2025-1951 – IBM Hardware Management Console Privilege Escalation Vulnerability

CVE-2025-3793 – Buddypress WordPress Force Password Change Plugin Authentication Bypass

CVE-2025-3816 – Westboy CicadasCMS OS Command Injection Vulnerability

Related Posts