CVE-2025-10105 is a medium severity SQL Injection vulnerability affecting yanyutao0402 ChanCMS versions up to 3.3.1, specifically in the /cms/article/search endpoint. The vulnerability arises from improper sanitization or validation of the 'keyword' parameter, allowing an attacker to inject malicious SQL code remotely without authentication or user interaction. This flaw enables an attacker to manipulate backend database queries, potentially leading to unauthorized data access, data modification, or disruption of service. The CVSS 4.0 vector indicates network attack vector (AV:N), low attack complexity (AC:L), no privileges required (PR:L, indicating low privileges but some level of authentication), no user interaction (UI:N), and limited impact on confidentiality, integrity, and availability (VC:L, VI:L, VA:L). Although no known exploits are currently observed in the wild, the public availability of proof-of-concept code increases the risk of exploitation. The vulnerability affects a CMS platform, which is often used to manage website content, making it a valuable target for attackers seeking to compromise web applications and extract sensitive information or deface websites.

For European organizations using ChanCMS versions 3.3.0 or 3.3.1, this vulnerability poses a risk of unauthorized access to sensitive data stored in backend databases, including potentially personal data protected under GDPR. Exploitation could lead to data breaches, reputational damage, and regulatory penalties. Additionally, attackers could alter website content or disrupt service availability, impacting business continuity and customer trust. Since the vulnerability can be exploited remotely without user interaction, it increases the attack surface and risk of automated exploitation attempts. Organizations in sectors such as media, education, government, and e-commerce that rely on ChanCMS for content management are particularly at risk. The medium severity rating suggests a moderate but non-negligible threat that requires timely remediation to prevent escalation or chaining with other vulnerabilities.

Organizations should immediately identify all instances of ChanCMS version 3.3.0 and 3.3.1 in their environment. Since no official patch links are currently provided, mitigation should focus on applying available vendor patches once released or upgrading to a fixed version. In the interim, implement web application firewall (WAF) rules to detect and block SQL injection patterns targeting the 'keyword' parameter in /cms/article/search requests. Conduct thorough input validation and sanitization on all user-supplied data, especially parameters used in database queries. Employ least privilege principles for database accounts used by ChanCMS to limit the impact of potential injection. Regularly monitor logs for suspicious activity related to SQL injection attempts. Additionally, consider isolating the CMS environment and restricting network access to trusted IPs where feasible. Finally, maintain an incident response plan to quickly address any exploitation attempts.