Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
FangfaFdcms

3 matches found

CVE
CVEadded 2021/06/02 9:40 p.m.62 views

CVE-2020-35441

CVE-2020-35441 corresponds to a SQL injection in FDCMS 4.0 exposed via the path Admin/Lib/Action/FloginAction.class.php . The connected sources consistently describe a vulnerability that would allow an attacker to manipulate SQL queries within the web-facing component and “obtain database records...

9.8CVSS9.8AI score0.01133EPSS
CVE
CVEadded 2021/06/02 9:40 p.m.51 views

CVE-2020-35442

FDCMS (Fangfa Content Management System) 4.0 is affected by a file inclusion vulnerability in Front/lib/Action/FindexAction.class.php, allowing remote attackers to obtain a webshell in the background. The issue is described across multiple sources (CNVD/CNNVD) as a PHP-based vulnerability in vers...

9.8CVSS9.2AI score0.01684EPSS
CVE
CVEadded 2019/05/16 2:19 p.m.42 views

CVE-2018-17048

CVE-2018-17048 affects FDCMS (Fangfa Content Management System) version 4.2. The vulnerability is an SQL Injection in file admin/Lib/Action/FpluginAction.class.php , with the root cause described as unsafely constructed SQL leading to partial/high impact on confidentiality depending on access. Do...

7.5CVSS7.7AI score0.01737EPSS