16 matches found
EUVD-2025-16731
Malicious code in bioql PyPI...
EUVD-2025-11560
Malicious code in bioql PyPI...
CVE-2025-46154
Foxcms v1.25 has a SQL time injection in the $POST'dbname' parameter of installdb.php...
CVE-2025-46154
Foxcms v1.25 has a SQL time injection in the $POST'dbname' parameter of installdb.php...
PT-2025-23616 · Foxcms · Foxcms
Name of the Vulnerable Software and Affected Versions: Foxcms version 1.25 Description: The issue is related to a SQL time injection in the installdb.php script, specifically affecting the $ POST'dbname' parameter. This allows for potential exploitation. Recommendations: For Foxcms version 1.25,...
CVE-2025-46154
Foxcms v1.25 has a SQL time injection in the $POST'dbname' parameter of installdb.php...
CVE-2025-46154
Foxcms v1.25 has a SQL time injection in the $POST'dbname' parameter of installdb.php...
FoxCMS 安全漏洞
FoxCMS is a free commercial open source content management system from China Qianxu FoxCMS. A security vulnerability exists in FoxCMS v1.2.5, which is caused by SQL time injection in the $POST dbname parameter in installdb.php...
CVE-2025-29180
In FOXCMS =1.25, the installdb.php file has a time - based blind SQL injection vulnerability. The urlprefix, domain, and mywebsite POST parameters are directly concatenated into SQL statements without filtering...
FoxCMS 安全漏洞
FoxCMS is a free commercial open source content management system from China Qianhuox FoxCMS company. A security vulnerability exists in FoxCMS 1.25 and earlier versions, which stems from insufficient filtering of the urlprefix, domain and mywebsite parameters in the installdb.php file, which may...
CVE-2025-29180
In FOXCMS =1.25, the installdb.php file has a time - based blind SQL injection vulnerability. The urlprefix, domain, and mywebsite POST parameters are directly concatenated into SQL statements without filtering...
CVE-2025-29180
FOXCMS
CVE-2025-29180
In FOXCMS =1.25, the installdb.php file has a time - based blind SQL injection vulnerability. The urlprefix, domain, and mywebsite POST parameters are directly concatenated into SQL statements without filtering...
CVE-2024-12900
A vulnerability classified as critical has been found in FoxCMS up to 1.2. Affected is an unknown function of the file /install/installdb.php of the component Configuration File Handler. The manipulation of the argument database password leads to code injection. It is possible to launch the attac...
CVE-2024-12900 FoxCMS Configuration File installdb.php code injection
A vulnerability classified as critical has been found in FoxCMS up to 1.2. Affected is an unknown function of the file /install/installdb.php of the component Configuration File Handler. The manipulation of the argument database password leads to code injection. It is possible to launch the attac...
CVE-2024-12900 FoxCMS Configuration File installdb.php code injection
A vulnerability classified as critical has been found in FoxCMS up to 1.2. Affected is an unknown function of the file /install/installdb.php of the component Configuration File Handler. The manipulation of the argument database password leads to code injection. It is possible to launch the attac...