← Back to CVE List
CVE-2025-25768
MRCMS v3.1.2 was discovered to contain a server-side template injection (SSTI) vulnerability in the component \servlet\DispatcherServlet.java. This vulnerability allows attackers to execute arbitrary code via a crafted payload.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt