CVE-2025-14731— CTCMS Content Management System Frontend/Template Management CT_Parser.php special elements used in a template engine
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-14731
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CTCMS Content Management System Frontend/Template Management CT_Parser.php special elements used in a template engine
Source: NVD (National Vulnerability Database)
Vulnerability Description
A weakness has been identified in CTCMS Content Management System up to 2.1.2. This affects an unknown function in the library /ctcms/apps/libraries/CT_Parser.php of the component Frontend/Template Management Module. This manipulation causes improper neutralization of special elements used in a template engine. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
CWE-1336
Source: NVD (National Vulnerability Database)
Vulnerability Title
CTCMS 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
CTCMS(赤兔CMS)是中国赤兔CMS(CTCMS)公司的一个视频内容管理系统。 CTCMS 2.1.2及之前版本存在安全漏洞,该漏洞源于文件/ctcms/apps/libraries/CT_Parser.php中未知函数对模板引擎特殊元素中和不当,可能导致远程攻击。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| CTCMS | Content Management System | 2.1.0 | - |
II. Public POCs for CVE-2025-14731
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-14731
请登录查看更多情报信息。
- https://vuldb.com/?submit.707106third-party-advisory
- https://vuldb.com/?submit.707107third-party-advisory
- https://vuldb.com/?id.336488vdb-entry
- https://nvd.nist.gov/vuln/detail/CVE-2025-14731
Same Patch Batch · CTCMS · 2025-12-15 · 3 CVEs total
| CVE-2025-14730 | 4.7 MEDIUM | CTCMS Content Management System Backend System Configuration Ct_Config.php code injection |
| CVE-2025-14729 | 4.7 MEDIUM | CTCMS Content Management System Backend App Configuration Ct_App.php save code injection |
IV. Related Vulnerabilities
Same product: Content Management System
- CVE-2026-0567
code-projects Content Management System pages.php sql inject - CVE-2026-0566
code-projects Content Management System edit_posts.php unres - CVE-2026-0565
code-projects Content Management System delete.php sql injec - CVE-2026-0546
code-projects Content Management System search.php sql injec - CVE-2025-15197
code-projects/anirbandutta9 Content Management System/News-B
Same weakness: CWE-1336
- CVE-2026-44129
Server-side template injection - CVE-2026-44916
OpenStack Ironic 安全漏洞 - CVE-2026-42203
LiteLLM: Server-Side Template Injection in /prompts/test end - CVE-2026-6984
AstrBotDevs AstrBot Dashboard API t2i.py create_template spe - CVE-2026-34587
Kirby has Server-Side Template Injection (SSTI) via double t
V. Comments for CVE-2025-14731
No comments yet