EUVD-2026-32029

🗓️ 27 May 2026 00:30:12Reported by EUVDType

QianFox FoxCMS up to 1.2.6: Admin.php Edit enables weak password recovery; remote and public exploit.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2026-9609	27 May 202600:30	–	attackerkb
Circl	CVE-2026-9609	27 May 202605:43	–	circl
CNNVD	FoxCMS 授权问题漏洞	27 May 202600:00	–	cnnvd
CVE	CVE-2026-9609	27 May 202600:30	–	cve
Cvelist	CVE-2026-9609 QianFox FoxCMS Admin.php edit password recovery	27 May 202600:30	–	cvelist
NVD	CVE-2026-9609	27 May 202602:16	–	nvd
Positive Technologies	PT-2026-43471	27 May 202600:00	–	ptsecurity
Vulnrichment	CVE-2026-9609 QianFox FoxCMS Admin.php edit password recovery	27 May 202600:30	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "aa8fe7f4-b251-3390-8f3f-0d9a2d392b42",
        "vendor": {
          "name": "qianfox"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "4f885d84-2834-3879-856d-e86ba12d582f",
        "product": {
          "name": "FoxCMS",
          "vendor": {
            "name": "qianfox"
          }
        },
        "product_version": "1.2.4"
      },
      {
        "id": "58a334bc-d4ff-380f-96f0-e3de5bd76835",
        "product": {
          "name": "FoxCMS",
          "vendor": {
            "name": "qianfox"
          }
        },
        "product_version": "1.2.0"
      },
      {
        "id": "74457ea4-0f5d-3ac1-a3ac-424de0969a18",
        "product": {
          "name": "FoxCMS",
          "vendor": {
            "name": "qianfox"
          }
        },
        "product_version": "1.2.3"
      },
      {
        "id": "7f1e7ad0-1278-35ca-b58e-8466a9d3b9ef",
        "product": {
          "name": "FoxCMS",
          "vendor": {
            "name": "qianfox"
          }
        },
        "product_version": "1.2.6"
      },
      {
        "id": "8486b354-30d2-3bb5-87db-49bc0aeecdef",
        "product": {
          "name": "FoxCMS",
          "vendor": {
            "name": "qianfox"
          }
        },
        "product_version": "1.2.1"
      },
      {
        "id": "a5ae91a8-2970-348b-9f92-f6541b09b223",
        "product": {
          "name": "FoxCMS",
          "vendor": {
            "name": "qianfox"
          }
        },
        "product_version": "1.2.2"
      },
      {
        "id": "bc478b1c-0582-3d22-bfd5-ed44fd2b9333",
        "product": {
          "name": "FoxCMS",
          "vendor": {
            "name": "qianfox"
          }
        },
        "product_version": "1.2.5"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/vuln/365682
vuldb	www.vuldb.com/vuln/365682/cti
vuldb	www.vuldb.com/submit/818343
github	www.github.com/QianFox/FoxCMS/issues/3
github	www.github.com/QianFox/FoxCMS/

27 May 2026 12:52Current

5.5Medium risk

Vulners AI Score5.5

CVSS 45.1

CVSS 3.14.7

CVSS 25.8

CVSS 34.7

EPSS0.00046

SSVC