4 matches found
CVE-2025-6094
creationtimestamp| type| source ---|---|--- 2025-06-15 23:37:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18389 2025-06-16 01:38:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrotu6nkfp2s...
CVE-2025-6094
FoxCMS (versions up to 1.2.5) contains a SQL injection in the batchCope function of app/admin/controller/Download.php, triggered by manipulating the ids parameter. The vulnerability allows remote exploitation and has publicly disclosed exploits. Publicly available advisories (e.g., PT-2025-25506)...
CVE-2025-6094 qianfox FoxCMS Download.php batchCope sql injection
A vulnerability, which was classified as critical, has been found in qianfox FoxCMS up to 1.2.5. This issue affects the function batchCope of the file app/admin/controller/Download.php. The manipulation of the argument ids leads to sql injection. The attack may be initiated remotely. The exploit...
CVE-2025-6094 qianfox FoxCMS Download.php batchCope sql injection
A vulnerability, which was classified as critical, has been found in qianfox FoxCMS up to 1.2.5. This issue affects the function batchCope of the file app/admin/controller/Download.php. The manipulation of the argument ids leads to sql injection. The attack may be initiated remotely. The exploit...