Volerion logoVolerion
Volerion logoVolerion

dayrui XunRuiCMS Deserialization Vulnerability in Admin Linkage Function

Vulnerability

A critical deserialization vulnerability has been identified in dayrui XunRuiCMS version 4.6.3. The issue arises in the import_add function within the file dayrui/Fcms/Control/Admin/Linkage.php. This vulnerability can be exploited remotely, allowing for potential manipulation of the application's data or behavior.

Impact

Exploitation of this vulnerability allows for arbitrary code execution through deserialization attacks.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
1.0
impact
10.0
exploitability
6.8
remediation
0.0
relevance
0.0
threat
6.4
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.