Home

Description

Server-side template injection (SSTI) vulnerability in PPress 0.0.9 allows attackers to execute arbitrary code via crafted themes.

PUBLISHED Reserved 2025-08-11 | Published 2025-09-19 | Updated 2025-09-19 | Assigner mitre

References

github.com/yandaozi/PPress/releases/tag/v0.0.9-beta

github.com/...in_details/blob/main/CVE-2025-54815 Details.md

cve.org (CVE-2025-54815)

nvd.nist.gov (CVE-2025-54815)

Download JSON