Geeeeeeeek: >> Dingfanzu >> 1.0 Security Vulnerabilities
dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/doAdminAction.php?act=addShop
CVSS Score
3.7
EPSS Score
0.0
Published
2025-09-08
A SQL Injection vulnerability in dingfanzuCMS v.1.0 allows a attacker to execute arbitrary code via not filtering the content correctly at the "operateOrder.php" id parameter.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-04-15