4 matches found
CVE-2025-5433
A vulnerability was found in Fengoffice Feng Office 3.5.1.5 and classified as critical. Affected by this issue is some unknown functionality of the file /index.php?c=account=settimezone. The manipulation of the argument tzoffset leads to sql injection. The attack may be launched remotely. The...
CVE-2025-5433
A vulnerability was found in Fengoffice Feng Office 3.5.1.5 and classified as critical. Affected by this issue is some unknown functionality of the file /index.php?c=account&a=settimezone. The manipulation of the argument tzoffset leads to sql injection. The attack may be launched remotely. The...
CVE-2025-5433
CVE-2025-5433 affects Fengoffice Feng Office 3.5.1.5. The vulnerability is an SQL injection in the endpoint /index.php?c=account&a=set_timezone, caused by manipulation of the tz_offset parameter. It is exploitable remotely and the exploit has been publicly disclosed. Multiple sources corroborate ...
CVE-2025-5433 Fengoffice Feng Office index.php sql injection
A vulnerability was found in Fengoffice Feng Office 3.5.1.5 and classified as critical. Affected by this issue is some unknown functionality of the file /index.php?c=account&a=settimezone. The manipulation of the argument tzoffset leads to sql injection. The attack may be launched remotely. The...