CVE-2025-0489

Medium CVSS: 5.3

A vulnerability classified as critical was found in Fanli2012 native-php-cms 1.0. This vulnerability affects unknown code of the file /fladmin/friendlink_dodel.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Vendor

Native-php-cms Project

Product

Native-php-cms

CWE

CWE-74

Yayın Tarihi

2025-01-15 22:15:26

Güncelleme

2025-05-05 15:19:28

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Native-php-cms MEDIUM Native-php-cms Project 2025

Referanslar

https://github.com/Fanli2012/native-php-cms/issues/11 https://github.com/Fanli2012/native-php-cms/issues/11#issue-2769999157 https://vuldb.com/?ctiid.291934 https://vuldb.com/?id.291934 https://vuldb.com/?submit.475256 https://github.com/Fanli2012/native-php-cms/issues/11 https://github.com/Fanli2012/native-php-cms/issues/11#issue-2769999157

Benzer Kayıtlar

Medium

CVE-2025-0490

A vulnerability, which was classified as critical, has been found in Fanli2012 native-php-cms 1.0. This issue affects so…

Medium

CVE-2025-0488

A vulnerability classified as critical has been found in Fanli2012 native-php-cms 1.0. This affects an unknown part of t…

Medium

CVE-2025-0483

A vulnerability has been found in Fanli2012 native-php-cms 1.0 and classified as problematic. This vulnerability affects…

Medium

CVE-2025-0482

A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. This affects an unknown pa…