Finecms Enterprise Edition Has Arbitrary File Download Vulnerability

FineCMS is a content management system based on PHP+MySql. An arbitrary file download vulnerability exists in Finecms Enterprise Edition. An attacker can exploit the vulnerability to directly download website configuration information or system files...

FineCMS Enterprise Email Parameter SQL Injection Vulnerability

FineCMS is a small and medium-sized content management system based on PHP+MySql+CI framework. An SQL injection vulnerability exists in the email parameter of FineCMS Enterprise Edition, as the program fails to adequately filter the email parameter, allowing attackers to exploit the vulnerability...