CVE-2025-0489 | Fanli2012 native-php-cms 1.0 friendlink_dodel.php id sql injection

Posted by Angelo Barbosa | Jan 15, 2025 | CVE

A vulnerability classified as critical was found in Fanli2012 native-php-cms 1.0. This vulnerability affects unknown code of the file /fladmin/friendlink_dodel.php. The manipulation of the argument id leads to sql injection.

This vulnerability was named CVE-2025-0489. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-0489 | Fanli2012 native-php-cms 1.0 friendlink_dodel.php id sql injection

Related Posts

CVE-2024-37775 | Sunbird DCIM dcTrack 9.1.2 RBAC access control

CVE-2023-42887 | Apple macOS up to 13.6.3/14.1 information disclosure

CVE-2024-21219 | Oracle MySQL Server up to 8.0.39/8.4.2/9.0.1 DML denial of service

CVE-2024-20322 | Cisco IOS XR Pseudowire Interface access control (cisco-sa-iosxr-acl-bypass-RZU5NL3e)