303 matches found
CVE-2024-48226
Funadmin 5.0.2 is vulnerable to SQL Injection in curd/table/savefield...
CVE-2024-48218
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list...
CVE-2024-48218
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list...
CVE-2024-48226
Funadmin 5.0.2 is vulnerable to SQL Injection in curd/table/savefield...
CVE-2024-48224
Funadmin v5.0.2 has an arbitrary file read vulnerability in /curd/index/editfile...
CVE-2024-48222
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/edit...
CVE-2024-48223
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/fieldlist...
CVE-2024-48225
Funadmin v5.0.2 has an arbitrary file deletion vulnerability in /curd/index/delfile...
CVE-2024-48223
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/fieldlist...
CVE-2024-48224
Funadmin v5.0.2 has an arbitrary file read vulnerability in /curd/index/editfile...
CVE-2024-48225
Funadmin v5.0.2 has an arbitrary file deletion vulnerability in /curd/index/delfile...
CVE-2024-48225
Funadmin v5.0.2 has an arbitrary file deletion vulnerability in /curd/index/delfile...
CVE-2024-48226
Funadmin 5.0.2 is vulnerable to SQL Injection in curd/table/savefield...
CVE-2024-48218
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list...
CVE-2024-48228
An issue was found in funadmin 5.0.2. The selectfiles method in \backend\controller\sys\Attachh.php directly stores the passed parameters and values into the param parameter without filtering, resulting in Cross Site Scripting XSS...
CVE-2024-48225
Funadmin v5.0.2 has an arbitrary file deletion vulnerability in /curd/index/delfile...
CVE-2024-48226
Funadmin 5.0.2 is vulnerable to SQL Injection in curd/table/savefield...
CVE-2024-48218
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list...
CVE-2024-48224
Funadmin v5.0.2 has an arbitrary file read vulnerability in /curd/index/editfile...
CVE-2024-48222
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/edit...