CVE-2025-0480 | wuzhicms 4.1.0 config.php test sphinxhost/sphinxport server-side request forgery

CVE-2025-0480 | wuzhicms 4.1.0 config.php test sphinxhost/sphinxport server-side request forgery

A vulnerability classified as problematic has been found in wuzhicms 4.1.0. This affects the function test of the file coreframe/app/search/admin/config.php. The manipulation of the argument sphinxhost/sphinxport leads to server-side request forgery. This vulnerability is uniquely identified as CVE-2025-0480. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.