exploitDog

CVE-2025-25789

Опубликовано: 26 фев. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

FoxCMS v1.2.5 was discovered to contain a remote code execution (RCE) vulnerability via the index() method at \controller\Sitemap.php.

Ссылки

http://foxcms.com
Not Applicable
https://github.com/Ka7arotto/FoxCMS/blob/main/FoxCMS-rce3.md
Exploit
https://www.foxcms.cn/
Product
https://github.com/Ka7arotto/FoxCMS/blob/main/FoxCMS-rce3.md
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:foxcms:foxcms:1.2.5:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01819

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-27jp-f6mj-xr9q

CVSS3: 9.8

github

8 месяцев назад

FoxCMS v1.2.5 was discovered to contain a remote code execution (RCE) vulnerability via the index() method at \controller\Sitemap.php.

EPSS

Процентиль: 82%

0.01819

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-94