Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

303 matches found

NVD
NVDadded 2023/03/07 3:15 p.m.12 views

CVE-2023-24781

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \member\MemberLevel.php...

9.8CVSS9.8AI score0.00741EPSS
Exploits1References1
Prion
Prionadded 2023/03/07 3:15 p.m.16 views

Sql injection

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \member\MemberLevel.php...

7.5CVSS9.8AI score0.00741EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2023/03/07 12:0 a.m.16 views

CVE-2023-24780

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/table/columns...

10AI score0.00814EPSS
Exploits2References1
Vulnrichment
Vulnrichmentadded 2023/03/07 12:0 a.m.8 views

CVE-2023-24780

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/table/columns...

8.5AI score0.00814EPSS
Exploits2References1
CVE
CVEadded 2023/03/07 12:0 a.m.53 views

CVE-2023-24780

Funadmin v3.2.0 contains a SQL injection vulnerability exposed via the id parameter in /databases/table/columns. CVSS v3.1 base score 9.8 (CRITICAL) with NETWORK attack vector, no user interaction. Impact: high on confidentiality, integrity, and availability. No remediation details are provided i...

9.8CVSS9.8AI score0.00814EPSS
Exploits2References1Affected Software1
Cvelist
Cvelistadded 2023/03/07 12:0 a.m.31 views

CVE-2023-24775

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \member\Member.php...

10AI score0.18893EPSS
Exploits2References1
CVE
CVEadded 2023/03/07 12:0 a.m.63 views

CVE-2023-24775

CVE-2023-24775 affects Funadmin v3.2.0. The issue is a SQL injection in the selectFields parameter of the file path \member\Member.php, enabling attacker-controlled SQL fragments. Public references (Red Hat, GHSA, OSV, NVD) reiterate the same vector and impact (high confidentiality, integrity, av...

9.8CVSS9.8AI score0.18893EPSS
Exploits2References1Affected Software1
CVE
CVEadded 2023/03/07 12:0 a.m.49 views

CVE-2023-24781

Funadmin v3.2.0 is affected by a SQL injection vulnerability in the selectFields parameter used by member/MemberLevel.php. This CVE (CVE-2023-24781) is characterized by a high-severity impact (CVSS v3.1 base score 9.8) with attacker access over the network and no privileges required, indicating p...

9.8CVSS9.8AI score0.00741EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/03/07 12:0 a.m.5 views

CVE-2023-24781

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \member\MemberLevel.php...

8.5AI score0.00741EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/03/07 12:0 a.m.3 views

FunAdmin SQL注入漏洞

FunAdmin is FunAdmin open source based on ThinkPHP6 + Layui development of a lightweight high-profile back-end development system . Funadmin version 3.2.0 there is a security vulnerability , the vulnerability stems from the memberMemberLevel.php selectFields parameter found to contain SQL injecti...

9.8CVSS8.5AI score0.00741EPSS
Exploits1References3
Cvelist
Cvelistadded 2023/03/07 12:0 a.m.14 views

CVE-2023-24781

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \member\MemberLevel.php...

10AI score0.00741EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/03/07 12:0 a.m.3 views

FunAdmin SQL注入漏洞

FunAdmin is FunAdmin open source based on ThinkPHP6 + Layui development of a lightweight high-profile back-end development system . FunAdmin version 3.2.0 there is a security vulnerability , the vulnerability stems from the memberMember.php selectFields parameter found to contain SQL injection...

9.8CVSS8.5AI score0.18893EPSS
Exploits2References2
Vulnrichment
Vulnrichmentadded 2023/03/07 12:0 a.m.6 views

CVE-2023-24775

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \member\Member.php...

8.5AI score0.18893EPSS
Exploits2References1
Github Security Blog
Github Security Blogadded 2023/03/06 9:30 p.m.27 views

Remote code execution in Funadmin

Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...

9.8CVSS9.6AI score0.01405EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2023/03/06 9:30 p.m.21 views

GHSA-7G53-JJ25-JHGR Remote code execution in Funadmin

Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...

9.8CVSS9.9AI score0.01405EPSS
Exploits1References3
OSV
OSVadded 2023/03/06 8:15 p.m.11 views

CVE-2023-24776

Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...

9.8CVSS10AI score
Exploits0References1
NVD
NVDadded 2023/03/06 8:15 p.m.10 views

CVE-2023-24776

Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...

9.8CVSS9.9AI score0.01405EPSS
Exploits1References1
Prion
Prionadded 2023/03/06 8:15 p.m.11 views

Remote code execution

Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...

7.5CVSS9.8AI score0.01405EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2023/03/06 12:0 a.m.15 views

CVE-2023-24776

Funadmin v3.2.0 was discovered to contain a remote code execution RCE vulnerability via the component \controller\Addon.php...

10AI score0.01405EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2023/03/06 12:0 a.m.2 views

PT-2023-19775 · Funadmin · Funadmin

Name of the Vulnerable Software and Affected Versions: Funadmin version 3.2.0 Description: The issue is related to a remote code execution RCE vulnerability. It affects the controllerAddon.php component, allowing for potential exploitation. Recommendations: For Funadmin version 3.2.0, update to a...

9.8CVSS9.5AI score0.01405EPSS
Exploits1References6
Rows per page
Query Builder