8 matches found
EUVD-2025-5544
Malicious code in bioql PyPI...
Exploit for Code Injection in Foxcms
Description Published: 2025-03-27 Updated: 2025-03-27 An...
CVE-2025-29306
An issue in FoxCMS v.1.2.5 allows a remote attacker to execute arbitrary code via the case display page in the index.html component...
CVE-2025-29306
An issue in FoxCMS v.1.2.5 allows a remote attacker to execute arbitrary code via the case display page in the index.html component...
PT-2025-13394
Name of the Vulnerable Software and Affected Versions FoxCMS version 1.2.5 Description An issue in FoxCMS allows a remote attacker to execute arbitrary code via the case display page in the index.html component. The vulnerability is related to a remote code execution issue. Recommendations For...
CVE-2025-29306
FoxCMS v1.2.5 (and older) contains CVE-2025-29306, a remote code execution via the id parameter on /images/index.html caused by unsafe handling of user input (unserialize()). Unauthenticated attackers can trigger arbitrary PHP code, potentially leading to full server compromise. Affected endpoint...
CVE-2025-26206
Cross Site Request Forgery vulnerability in sell done storefront v.1.0 allows a remote attacker to escalate privileges via the index.html component...
Shanxi Internet Chuangxiang Technology the background management system security vulnerability
Shanxi Internet Chuangxiang Technology the background management system is a background management system of Shanxi Internet Chuangxiang Technology. A security vulnerability exists in Shanxi Internet Chuangxiang Technology the background management system version v1.0.1, which could allow a remot...