114 matches found
FastAdmin < V1.3.4.20220530 - Path Traversal
A vulnerability, which was classified as problematic, has been found in FastAdmin up to 1.3.3.20220121. Affected by this issue is some unknown functionality of the file /index/ajax/lang. The manipulation of the argument lang leads to path traversal. The attack may be launched remotely. The exploi...
CVE-2019-11077
FastAdmin V1.0.0.20190111beta has a CSRF vulnerability to add a new admin user via the admin/auth/admin/add?dialog=1 URI...
CVE-2025-14966
A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpage of the file application/common/controller/Backend.php of the component Backend Controller. Executing a manipulation of the argument custom/searchField can lead to sql injection. It is possible to...
EUVD-2025-204610
A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpage of the file application/common/controller/Backend.php of the component Backend Controller. Executing manipulation of the argument custom/searchField can lead to sql injection. It is possible to...
CVE-2025-14966
A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpage of the file application/common/controller/Backend.php of the component Backend Controller. Executing a manipulation of the argument custom/searchField can lead to sql injection. It is possible to...
CVE-2025-14966
A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpage of the file application/common/controller/Backend.php of the component Backend Controller. Executing a manipulation of the argument custom/searchField can lead to sql injection. It is possible to...
CVE-2025-14966
A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpage of the file application/common/controller/Backend.php of the component Backend Controller. Executing a manipulation of the argument custom/searchField can lead to sql injection. It is possible to...
CVE-2025-14966 FastAdmin Backend Controller Backend.php selectpage sql injection
A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpage of the file application/common/controller/Backend.php of the component Backend Controller. Executing a manipulation of the argument custom/searchField can lead to sql injection. It is possible to...
CVE-2025-14966
FastAdmin vulnerability (CVE-2025-14966) affects FastAdmin up to version 1.7.0.20250506. The issue is in Backend Controller’s selectpage function (application/common/controller/Backend.php) where manipulating the custom/searchField parameter can trigger an SQL injection. It can be exploited remot...
CVE-2025-14966 FastAdmin Backend Controller Backend.php selectpage sql injection
A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpage of the file application/common/controller/Backend.php of the component Backend Controller. Executing a manipulation of the argument custom/searchField can lead to sql injection. It is possible to...
FastAdmin SQL注入漏洞
FastAdmin is a set of web backend development framework based on ThinkPHP and Bootstrap by Karson's personal developer. FastAdmin 1.7.0.20250506 and earlier versions exist SQL injection vulnerability, the vulnerability stems from the application/common/controller/Backend.php file...
PT-2025-52509
Name of the Vulnerable Software and Affected Versions FastAdmin versions prior to 1.7.0.20250506 Description A flaw exists in FastAdmin up to version 1.7.0.20250506. The issue is located within the selectpage function of the Backend.php file in the Backend Controller component. Manipulation of th...
FastAdmin Arbitrary File Read Vulnerability of Shenzhen Extreme Creative Technology Co.
FastAdmin is an open source and free commercial backend development framework, built on ThinkPHP and Bootstrap, with a comprehensive permission management system and one-click generation of CRUD and other powerful features. Shenzhen Extreme Creative Technology Co. FastAdmin arbitrary file reading...
EUVD-2019-2782
Malware in sbrugna...
EUVD-2020-19154
Malware in sbrugna...
EUVD-2020-14433
Malware in sbrugna...
EUVD-2018-2342
Malware in sbrugna...
EUVD-2019-7824
Malware in sbrugna...
EUVD-2019-7823
Malware in sbrugna...
EUVD-2020-18597
Malware in sbrugna...