CVE-2025-0484 | Fanli2012 native-php-cms 1.0 Backend sysconfig_doedit.php improper authorization

Posted by Angelo Barbosa | Jan 15, 2025 | CVE

A vulnerability was found in Fanli2012 native-php-cms 1.0 and classified as critical. This issue affects some unknown processing of the file /fladmin/sysconfig_doedit.php of the component Backend. The manipulation leads to improper authorization.

The identification of this vulnerability is CVE-2025-0484. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-0484 | Fanli2012 native-php-cms 1.0 Backend sysconfig_doedit.php improper authorization

Related Posts

CVE-2024-7353 | Accept Stripe Payments Plugin up to 2.0.86 on WordPress Shortcode accept_stripe_payment_ng cross site scripting

CVE-2024-10165 | Codezips Sales Management System 1.0 deletecustcom.php id sql injection

CVE-2024-40980 | Linux Kernel up to 6.9.6 spinlock_rt.c trace_drop_common stack-based overflow

CVE-2024-12652 | Intumit SmartRobots Conversational AI Platform up to 7.1.x Groovy Script code injection