CVE-2023-36097

CVE-2023-36097 affects FunAdmin v3.3.2 and v3.3.3. The issue is an insecure file upload in the plugin installation process, caused by insufficient validation/restrictions on uploaded plugin files. This vulnerability allows an attacker to upload malicious files via the local install mechanism, pot...

CVE-2023-24774

Funadmin 3.2.0 is affected by an SQL injection via the selectFields parameter in controller/auth/Auth.php. The vulnerability enables unauthenticated network-exposed exploitation with high impact on confidentiality, integrity and availability (CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H; base 9...

CVE-2023-24782

CVE-2023-24782 corresponds to a SQL injection vulnerability in Funadmin v3.2.0. The flaw is exploitable via the id parameter on the /databases/database/edit endpoint, allowing unauthorized access/manipulation of database content. The CVSS v3.1 metrics show a CRITICAL base score of 9.8 (Network ac...

CVE-2024-48231

CVE-2024-48231 affects Funadmin 5.0.2. The vulnerability is an SQL Injection in the backend/auth/Auth.php: the index() method mishandles the selectFields parameter, enabling manipulation of database queries. This is confirmed across multiple sources (Veracode, Snyk, GHSA, OSV, NVD) describing a S...

CVE-2023-24777

CVE-2023-24777 is a SQL injection vulnerability affecting Funadmin v3.2.0 exposed via the id parameter in the /databases/table/list endpoint. The root cause is unsafely handling the id input, enabling attack execution likely over network with no user interaction, and resulting in high confidentia...

CVE-2023-24775

CVE-2023-24775 affects Funadmin v3.2.0. The issue is a SQL injection in the selectFields parameter of the file path \member\Member.php, enabling attacker-controlled SQL fragments. Public references (Red Hat, GHSA, OSV, NVD) reiterate the same vector and impact (high confidentiality, integrity, av...

CVE-2023-2477

CVE-2023-2477 affects Funadmin up to version 3.2.3. The vulnerability lies in the function tagLoad in file Cx.php where manipulating the argument file enables Cross-Site Scripting (XSS) . Exploitation can be carried out remotely and public disclosures exist. A practical mitigation mentioned in so...

CVE-2023-24773

CVE-2023-24773 affects Funadmin v3.2.0. The vulnerability is a SQL injection in the id parameter of the /databases/database/list endpoint. Public summaries consistently describe it as a high-severity issue (CVSS v3.1: 9.8, CRITICAL) with network attack vector, no authentication, and impact to con...

CVE-2024-48226

Funadmin 5.0.2 has a SQL injection vulnerability in curd/table/savefield. The issue arises from improper input handling, enabling manipulation of database queries and potential unauthorized data access/alteration. This is confirmed across multiple sources (GHSA, OSV, NVD/NVD-derived entries, Vera...

CVE-2024-48227

CVE-2024-48227 concerns Funadmin 5.0.2, where a logical flaw in the Curd one-click command deletion function can cause a Denial of Service (DOS). The available documents identify the affected software and the faulty delete logic as the root cause, and they consistently describe impact as DoS. No ...

CVE-2024-48224

Funadmin v5.0.2 has an arbitrary file read vulnerability in the /curd/index/editfile endpoint. The issue is documented across multiple sources (NVD entry CVE-2024-48224 and Red Hat, Veracode, OSV, Snyk, GHSA advisories, CNNVD, PT Security) and is consistently described as an arbitrary file read/l...

CVE-2024-48222

Summary: CVE-2024-48222 affects Funadmin v5.0.2 with a SQL injection in the /curd/table/edit endpoint. The vulnerability stems from insufficient input validation, allowing untrusted data to be used directly in SQL queries. Connected sources corroborate a SQL injection risk and indicate potential ...

CVE-2023-24776

Funadmin v3.2.0 is affected by a remote code execution (RCE) vulnerability in the controllerAddon.php component (via \controller\Addon.php). NVD lists CVSS v3.1 base score 9.8 (CRITICAL) with network attack vector, no privileges, no user interaction required, and impact to confidentiality, integr...

CVE-2023-24780

Funadmin v3.2.0 contains a SQL injection vulnerability exposed via the id parameter in /databases/table/columns. CVSS v3.1 base score 9.8 (CRITICAL) with NETWORK attack vector, no user interaction. Impact: high on confidentiality, integrity, and availability. No remediation details are provided i...

CVE-2024-48228

CVE-2024-48228 affects funadmin 5.0.2, where the selectfiles method in \backend\controller\sys\Attachh.php directly stores unfiltered parameters/values into the param parameter, causing Cross-Site Scripting (XSS). Multiple connected sources (Red Hat CVE page, GHSA advisory, Veracode, OSV, NVD) co...

CVE-2024-48218

Funadmin v5.0.2 is affected by a SQL injection in the /curd/table/list endpoint. The vulnerability is caused by improper input sanitization in that endpoint (supported by Veracode description and Snyk report citing the list method in curd/controller/Table.php). Exploitation could allow attackers ...

CVE-2023-24781

Funadmin v3.2.0 is affected by a SQL injection vulnerability in the selectFields parameter used by member/MemberLevel.php. This CVE (CVE-2023-24781) is characterized by a high-severity impact (CVSS v3.1 base score 9.8) with attacker access over the network and no privileges required, indicating p...

CVE-2024-48229

Funadmin 5.0.2 is affected by a SQL injection in the Curd one-click command mode plugin. The vulnerability arises from improper input validation, allowing user-supplied data to be directly included in SQL queries without sanitization. This affects the Curd one-click command mode plugin and can im...

CVE-2024-48230

CVE-2024-48230 affects funadmin 5.0.2 in the index method of backend/controller/auth/Auth.php, where the parentField parameter enables SQL Injection. Multiple sources (NVD, Red Hat, Veracode, OSV, GHSA/GitHub advisories, CVE lists) confirm the vulnerability and its impact on data confidentiality,...

CVE-2024-48223

Funadmin v5.0.2 is affected by a SQL injection in the /curd/table/fieldlist API endpoint. The root cause is improper handling/validation of input in that endpoint, enabling attacker-controlled SQL commands. Documented impact scope includes potential data disclosure/modification with high severity...

CVE-2024-48225

Funadmin v5.0.2 contains an arbitrary file deletion vulnerability in the /curd/index/delfile endpoint. Multiple connected sources consistently describe this issue, noting that lack of proper access control allows unauthorized deletion of files. The vulnerability is categorized as a high-integrity...

CVE-2026-2896

Funadmin up to 7.1.0-rc4 is affected by CVE-2026-2896 due to a flaw in the setConfig function of app/backend/controller/Ajax.php (Configuration Handler). The issue allows remote manipulation to cause improper authorization. Exploitation is possible over the network with no privileges and no user ...

CVE-2026-2895

CVE-2026-2895 affects funadmin up to 7.1.0-rc4. The vulnerability is in the function repass of the file app/frontend/controller/Member.php . Manipulating the arguments forget_code/vercode enables weak password recovery and allows remote exploitation . Reported exploitation is possible; the attack...

CVE-2026-2898

The CVE concerns funadmin up to 7.1.0-rc4, affecting the Backend Endpoint through the function getMember in app/common/service/AuthCloudService.php. The issue stems from deserialization triggered by manipulating the cloud_account argument, enabling a remote attack. The exploit is publicly availab...

CVE-2026-2894

FunAdmin up to 7.1.0-rc4 is affected by an access-control error in the forget.html getMember function that enables information disclosure. The issue allows remote exploitation with publicly available exploit code. Multiple sources confirm the vulnerability in the same component and version range....

CVE-2026-2897

CVE-2026-2897 affects funadmin up to version 7.1.0-rc4, specifically in the Backend Interface code path (file: app/backend/view/index/index.html). The issue arises from manipulation of the Value argument, enabling cross-site scripting. Exploitation is remote and public exploits exist; vendor was ...