Qianfox: Security Vulnerabilities
foxcms v1.2.5 was discovered to contain an arbitrary file deletion vulnerability via the delRestoreSerie method.
CVSS Score
9.1
EPSS Score
0.004
Published
2025-05-05
An issue in the restores method (DataBackup.php) of foxcms v2.0.6 allows attackers to execute a directory traversal.
CVSS Score
5.3
EPSS Score
0.001
Published
2025-05-05
foxcms v1.2.5 was discovered to contain a SQL injection vulnerability via the executeCommand method in DataBackup.php.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-05-05