Lucene search
+L

4 matches found

Circl
Circl
added 2025/06/15 11:37 p.m.28 views

CVE-2025-6094

creationtimestamp| type| source ---|---|--- 2025-06-15 23:37:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18389 2025-06-16 01:38:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrotu6nkfp2s...

8.8CVSS6.2AI score0.0037EPSS
Exploits1References2
CVE
CVE
added 2025/06/15 10:31 p.m.66 views

CVE-2025-6094

FoxCMS (versions up to 1.2.5) contains a SQL injection in the batchCope function of app/admin/controller/Download.php, triggered by manipulating the ids parameter. The vulnerability allows remote exploitation and has publicly disclosed exploits. Publicly available advisories (e.g., PT-2025-25506)...

8.8CVSS6.7AI score0.0037EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/06/15 10:31 p.m.20 views

CVE-2025-6094 qianfox FoxCMS Download.php batchCope sql injection

A vulnerability, which was classified as critical, has been found in qianfox FoxCMS up to 1.2.5. This issue affects the function batchCope of the file app/admin/controller/Download.php. The manipulation of the argument ids leads to sql injection. The attack may be initiated remotely. The exploit...

6.5CVSS0.0037EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/06/15 10:31 p.m.5 views

CVE-2025-6094 qianfox FoxCMS Download.php batchCope sql injection

A vulnerability, which was classified as critical, has been found in qianfox FoxCMS up to 1.2.5. This issue affects the function batchCope of the file app/admin/controller/Download.php. The manipulation of the argument ids leads to sql injection. The attack may be initiated remotely. The exploit...

6.5CVSS6.7AI score0.0037EPSS
Exploits1References4
Rows per page
Query Builder