exploitDog

GHSA-9635-9v45-wjwc

Опубликовано: 09 сент. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

SQL Injection vulnerability in FoxCMS v1.2.6 and before allows a remote attacker to execute arbitrary code via the. file /DataBackup.php and the operation on the parameter id.

SQL Injection vulnerability in FoxCMS v1.2.6 and before allows a remote attacker to execute arbitrary code via the. file /DataBackup.php and the operation on the parameter id.

Ссылки

EPSS

Процентиль: 38%

0.00164

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2025-56435

CVSS3: 5.3

nvd

5 месяцев назад

SQL Injection vulnerability in FoxCMS v1.2.6 and before allows a remote attacker to execute arbitrary code via the. file /DataBackup.php and the operation on the parameter id.

EPSS

Процентиль: 38%

0.00164

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-89