PatchSiren

WuzhiCMS CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM WuzhiCMS CVE published 2026-07-13

CVE-2026-15530

A medium-severity vulnerability, CVE-2026-15530, was found in WuzhiCMS up to 4.1.0. This vulnerability affects the function config/listimage of the file /index.php?m=attachment&f=index&v=upload of the component Attachment API, potentially leading to information disclosure. The vulnerability can be exploited remotely. Users of WuzhiCMS should be aware of this vulnerability and take necessary actions to pro [truncated]