PatchSiren

jizhicms CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH jizhicms CVE published 2026-02-17

CVE-2025-70397

A PatchSiren debrief for CVE-2025-70397 indicates jizhicms 2.5.6 is vulnerable to SQL Injection. This issue exists in the Article/deleteAll and Extmolds/deleteAll endpoints via the data parameter. The vulnerability has a CVSS score of 7.2 and is classified as HIGH. The CVE record was published on 2026-02-17T16:20:25.467Z and last modified on 2026-07-05T02:17:39.107Z. The NVD entry is currently Modified. S [truncated]