Lucene search
K

246 matches found

NVD
NVD
added 2025/05/05 6:15 p.m.9 views

CVE-2025-45239

An issue in the restores method DataBackup.php of foxcms v2.0.6 allows attackers to execute a directory traversal...

5.3CVSS0.00702EPSS
Exploits1References2
OSV
OSV
added 2025/05/05 6:15 p.m.4 views

CVE-2025-45239

An issue in the restores method DataBackup.php of foxcms v2.0.6 allows attackers to execute a directory traversal...

5.3CVSS5.9AI score
Exploits0References2
OSV
OSV
added 2025/05/05 6:15 p.m.2 views

CVE-2025-45238

foxcms v1.2.5 was discovered to contain an arbitrary file deletion vulnerability via the delRestoreSerie method...

9.1CVSS5.9AI score0.00566EPSS
Exploits1References2
NVD
NVD
added 2025/05/05 6:15 p.m.12 views

CVE-2025-45238

foxcms v1.2.5 was discovered to contain an arbitrary file deletion vulnerability via the delRestoreSerie method...

9.1CVSS0.00566EPSS
Exploits1References2
NVD
NVD
added 2025/05/05 5:18 p.m.20 views

CVE-2025-45240

foxcms v1.2.5 was discovered to contain a SQL injection vulnerability via the executeCommand method in DataBackup.php...

6.5CVSS0.00258EPSS
Exploits1References2
OSV
OSV
added 2025/05/05 5:18 p.m.2 views

CVE-2025-45240

foxcms v1.2.5 was discovered to contain a SQL injection vulnerability via the executeCommand method in DataBackup.php...

6.5CVSS5.8AI score0.00258EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/05/05 12:0 a.m.11 views

CVE-2025-45240

foxcms v1.2.5 was discovered to contain a SQL injection vulnerability via the executeCommand method in DataBackup.php...

0.00258EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/05/05 12:0 a.m.6 views

CVE-2025-45240

foxcms v1.2.5 was discovered to contain a SQL injection vulnerability via the executeCommand method in DataBackup.php...

7.8AI score0.00258EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/05/05 12:0 a.m.11 views

CVE-2025-45239

An issue in the restores method DataBackup.php of foxcms v2.0.6 allows attackers to execute a directory traversal...

0.00702EPSS
Exploits1References2
CVE
CVE
added 2025/05/05 12:0 a.m.56 views

CVE-2025-45239

FoxCMS v2.0.6 contains a vulnerability in the restores method of DataBackup.php that allows a directory traversal attack. The issue stems from improper handling in the restores logic, enabling access to filesystem paths beyond the intended directory. Documented impact is limited to information ex...

5.3CVSS6.8AI score0.00702EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/05 12:0 a.m.8 views

CVE-2025-45238

foxcms v1.2.5 was discovered to contain an arbitrary file deletion vulnerability via the delRestoreSerie method...

7.5AI score0.00566EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/05/05 12:0 a.m.3 views

FoxCMS 安全漏洞

FoxCMS is a free commercial open source content management system from China Qianxu FoxCMS company. A security vulnerability exists in FoxCMS v1.2.5, which originates from improper handling of the executeCommand method in DataBackup.php, which may lead to SQL injection attacks...

6.5CVSS7.8AI score0.00258EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/05/05 12:0 a.m.3 views

FoxCMS 安全漏洞

FoxCMS is a free commercial open source content management system from China Qianxu FoxCMS company. A security vulnerability exists in FoxCMS v2.0.6, which originates from improper handling of the restores method in DataBackup.php, which may lead to a directory traversal attack...

5.3CVSS6.7AI score0.00702EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/05/05 12:0 a.m.4 views

PT-2025-19754 · Foxcms · Foxcms

Name of the Vulnerable Software and Affected Versions: foxcms version 2.0.6 Description: An issue in the restores method of DataBackup.php allows attackers to execute a directory traversal. Recommendations: For foxcms version 2.0.6, consider restricting access to the restores method in...

5.3CVSS6.4AI score0.00702EPSS
Exploits1References7
CVE
CVE
added 2025/05/05 12:0 a.m.59 views

CVE-2025-45238

FoxCMS v1.2.5 is affected by an arbitrary file deletion vulnerability via the delRestoreSerie method. The issue stems from the delRestoreSerie functionality and can lead to deletion of arbitrary files, as described across multiple sources (including Red Hat and PT Security advisories). The vulner...

9.1CVSS7.2AI score0.00566EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/05 12:0 a.m.4 views

PT-2025-19729 · Foxcms · Foxcms

Name of the Vulnerable Software and Affected Versions: foxcms version 1.2.5 Description: The issue is a SQL injection vulnerability via the executeCommand method in DataBackup.php. This vulnerability allows for potential SQL injection attacks. Recommendations: For foxcms version 1.2.5, consider...

6.5CVSS7AI score0.00258EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2025/05/05 12:0 a.m.7 views

CVE-2025-45239

An issue in the restores method DataBackup.php of foxcms v2.0.6 allows attackers to execute a directory traversal...

5.5AI score0.00702EPSS
Exploits1References2
CVE
CVE
added 2025/05/05 12:0 a.m.53 views

CVE-2025-45240

FoxCMS v1.2.5 contains a SQL injection vulnerability in the executeCommand method of DataBackup.php (CVE-2025-45240). Affects foxcms 1.2.5; impact described as likely SQL injection with low to moderate confidentiality/integity impact and no availability impact per CVSS 3.1 (AV:N/AC:L/PR:N/UI:N/S:...

6.5CVSS8.5AI score0.00258EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/05 12:0 a.m.4 views

PT-2025-19753 · Foxcms · Foxcms

Name of the Vulnerable Software and Affected Versions: foxcms version 1.2.5 Description: The issue is related to an arbitrary file deletion vulnerability. This vulnerability can be exploited via the delRestoreSerie method. Recommendations: For foxcms version 1.2.5, consider disabling the...

9.1CVSS6.5AI score0.00566EPSS
Exploits1References8
Cvelist
Cvelist
added 2025/05/05 12:0 a.m.14 views

CVE-2025-45238

foxcms v1.2.5 was discovered to contain an arbitrary file deletion vulnerability via the delRestoreSerie method...

0.00566EPSS
Exploits1References2
Rows per page
Query Builder