PT-2025-3921 · Fanli2012 · Native-Php-Cms

Name of the Vulnerable Software and Affected Versions: Fanli2012 native-php-cms version 1.0 Description: A critical issue has been found in the software, affecting an unknown function of the file /fladmin/cat dodel.php. The manipulation of the id argument leads to SQL injection. It is possible to...

PT-2025-3913 · Fanli2012 · Native-Php-Cms

Name of the Vulnerable Software and Affected Versions: Fanli2012 native-php-cms version 1.0 Description: A vulnerability has been found in the file /fladmin/jump.php, affecting unknown code. The manipulation of the message/error argument leads to cross-site scripting. The attack can be initiated...

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which stems from improper manipulation of the message/error parameter in the file /fladmin/jump.php, and is susceptible to cross-site scripting attacks...

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in native-php-cms version 1.0, which originates from improper authorization in the file /fladmin/sysconfigdoedit.php in the Backend component...

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in native-php-cms version 1.0, which originates from the parameter username in the file /fladmin/login.php that can cause SQL injection...

PT-2025-3916 · Fanli2012 · Native-Php-Cms

Name of the Vulnerable Software and Affected Versions: Fanli2012 native-php-cms version 1.0 Description: A critical issue has been found in the software, affecting an unknown functionality of the file /fladmin/login.php. The manipulation of the username argument leads to SQL injection. This issue...

PT-2025-3920 · Fanli2012 · Native-Php-Cms

Name of the Vulnerable Software and Affected Versions: Fanli2012 native-php-cms version 1.0 Description: A critical issue has been found in the processing of the file /fladmin/article dodel.php. The manipulation of the id argument leads to SQL injection. The attack may be initiated remotely. The...

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which stems from improper handling in the file /fladmin/userrecoverpwd.php, which could lead to the use of default credentials...

native-php-cms 安全漏洞

native-php-cms is a website builder system for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which stems from a parameter id in the file /fladmin/friendlinkdodel.php that can lead to SQL injection...

native-php-cms 安全漏洞

native-php-cms is a website builder for FLi individual developers. A security vulnerability exists in native-php-cms version 1.0, which stems from a parameter cat in the file productlist.php that can cause SQL injection...

CVE-2021-36503

SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file...

CVE-2021-36503

SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file...

CVE-2021-36503

SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file...

CVE-2021-36503

CVE-2021-36503 is a SQL injection vulnerability affecting native-php-cms version 1.0. The issue allows remote attackers to execute arbitrary SQL commands by supplying crafted input to the cat parameter of the /list.php endpoint. The CVSS v3.1 base score is 9.8 (CRITICAL) with Network attack vecto...

native-php-cms SQL注入漏洞

native-php-cms is a website builder for FLi individual developers. A security vulnerability exists in version 1.0 of native-php-cms, which is caused by SQL injection and can be exploited by an attacker to run arbitrary SQL commands via the cat parameter in the /list.php file...

CVE-2021-36503

SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file...

PT-2023-12281 · Unknown · Native-Php-Cms

Name of the Vulnerable Software and Affected Versions: native-php-cms version 1.0 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the cat parameter in the /list.php file, enabling attackers to inject malicious SQL code...