Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

246 matches found

Nuclei
Nucleiadded yesterday83 views

FoxCMS v.1.2.5 - Remote Code Execution

An issue in FoxCMS v.1.2.5 allows a remote attacker to execute arbitrary code via the case display page in the index.html component. id: CVE-2025-29306 info: name: FoxCMS v.1.2.5 - Remote Code Execution author: ritikchaddha severity: critical description: | An issue in FoxCMS v.1.2.5 allows a...

9.8CVSS6AI score0.86208EPSS
Exploits11References3
RedhatCVE
RedhatCVEadded 2 days ago4 views

CVE-2026-9608

A vulnerability was determined in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

4.8CVSS3.5AI score0.00032EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2 days ago6 views

CVE-2026-9609

A vulnerability was identified in QianFox FoxCMS up to 1.2.6. This affects the function Edit of the file Admin.php. The manipulation leads to weak password recovery. The attack can be initiated remotely. The exploit is publicly available and might be used. The project was informed of the problem...

5.8CVSS5.2AI score0.00046EPSS
Exploits0References1
NVD
NVDadded 2026/05/27 2:16 a.m.8 views

CVE-2026-9608

A vulnerability was determined in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

4.8CVSS0.00032EPSS
Exploits0References5
NVD
NVDadded 2026/05/27 2:16 a.m.6 views

CVE-2026-9609

A vulnerability was identified in QianFox FoxCMS up to 1.2.6. This affects the function Edit of the file Admin.php. The manipulation leads to weak password recovery. The attack can be initiated remotely. The exploit is publicly available and might be used. The project was informed of the problem...

5.8CVSS0.00046EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/27 12:30 a.m.6 views

CVE-2026-9609

A vulnerability was identified in QianFox FoxCMS up to 1.2.6. This affects the function Edit of the file Admin.php. The manipulation leads to weak password recovery. The attack can be initiated remotely. The exploit is publicly available and might be used. The project was informed of the problem...

5.8CVSS5.5AI score0.00046EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2026/05/27 12:30 a.m.10 views

CVE-2026-9609

CVE-2026-9609 affects QianFox FoxCMS up to version 1.2.6, targeting the Admin.php Edit function. The vulnerability enables weak password recovery through manipulation of the admin password flow, with remote initiation. Public exploit code exists, and the issue was reported via an issue but not ye...

5.8CVSS5.5AI score0.00046EPSS
Exploits0References5
EUVD
EUVDadded 2026/05/27 12:30 a.m.10 views

EUVD-2026-32029

A vulnerability was identified in QianFox FoxCMS up to 1.2.6. This affects the function Edit of the file Admin.php. The manipulation leads to weak password recovery. The attack can be initiated remotely. The exploit is publicly available and might be used. The project was informed of the problem...

5.8CVSS5.5AI score0.00046EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/27 12:30 a.m.26 views

CVE-2026-9609 QianFox FoxCMS Admin.php edit password recovery

A vulnerability was identified in QianFox FoxCMS up to 1.2.6. This affects the function Edit of the file Admin.php. The manipulation leads to weak password recovery. The attack can be initiated remotely. The exploit is publicly available and might be used. The project was informed of the problem...

5.8CVSS0.00046EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/05/27 12:30 a.m.6 views

CVE-2026-9609 QianFox FoxCMS Admin.php edit password recovery

A vulnerability was identified in QianFox FoxCMS up to 1.2.6. This affects the function Edit of the file Admin.php. The manipulation leads to weak password recovery. The attack can be initiated remotely. The exploit is publicly available and might be used. The project was informed of the problem...

5.8CVSS5.5AI score0.00046EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/27 12:15 a.m.10 views

CVE-2026-9608

A vulnerability was determined in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

4.8CVSS4.1AI score0.00032EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/27 12:15 a.m.6 views

CVE-2026-9608 QianFox FoxCMS Administrator Backend edit cross site scripting

A vulnerability was determined in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

4.8CVSS4.1AI score0.00032EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/27 12:15 a.m.28 views

CVE-2026-9608 QianFox FoxCMS Administrator Backend edit cross site scripting

A vulnerability was determined in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

4.8CVSS0.00032EPSS
Exploits0References5
EUVD
EUVDadded 2026/05/27 12:15 a.m.15 views

EUVD-2026-32028

A vulnerability was determined in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

4.8CVSS4.1AI score0.00032EPSS
Exploits0References5
CVE
CVEadded 2026/05/27 12:15 a.m.15 views

CVE-2026-9608

CVE-2026-9608 affects QianFox FoxCMS (up to version 1.2.6) in the Administrator Backend, specifically the /Tag/edit function where a manipulated request can trigger cross-site scripting. The vulnerability arises from an unspecified element/function within that file, allowing remote exploitation. ...

4.8CVSS4.1AI score0.00032EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/05/27 12:0 a.m.7 views

PT-2026-43471

A vulnerability was identified in QianFox FoxCMS up to 1.2.6. This affects the function Edit of the file Admin.php. The manipulation leads to weak password recovery. The attack can be initiated remotely. The exploit is publicly available and might be used. The project was informed of the problem...

5.8CVSS5.5AI score0.00046EPSS
Exploits0References6
CNNVD
CNNVDadded 2026/05/27 12:0 a.m.6 views

FoxCMS 代码注入漏洞

FoxCMS is a content management system provided by FoxCMS Company in China, available for free commercial use and open source. Versions of FoxCMS 1.2.6 and earlier have a code injection vulnerability. This vulnerability stems from unknown functions in the Administrator Backend component/Tag/edit...

4.8CVSS5.7AI score0.00032EPSS
Exploits0References5
CNNVD
CNNVDadded 2026/05/27 12:0 a.m.4 views

FoxCMS 授权问题漏洞

FoxCMS is a content management system provided by FoxCMS Company in China, available for free commercial use and open source. Versions of FoxCMS 1.2.6 and earlier have a licensing issue vulnerability, which stems from a weak password recovery vulnerability in the Edit function of the Admin.php fi...

5.8CVSS5.8AI score0.00046EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/05/27 12:0 a.m.10 views

PT-2026-43470

A vulnerability was determined in QianFox FoxCMS up to 1.2.6. The impacted element is an unknown function of the file /Tag/edit of the component Administrator Backend. Executing a manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been...

4.8CVSS4.1AI score0.00032EPSS
Exploits0References6
GithubExploit
GithubExploitadded 2026/01/07 5:8 a.m.171 views

Exploit for Code Injection in Foxcms

Mass-CVE-2025-29306...

9.8CVSS6.8AI score0.86208EPSS
Exploits11
Rows per page
Query Builder