CNNVD-202508-2608 Information

CNNVD ID

CNNVD-202508-2608

Related CVE

CVE-2025-55420

• CNNVD Published: 2025-08-21

Description (Chinese)

FoxCMS是中国黔狐（FoxCMS）公司的一套可免费商用开源的内容管理系统。 FoxCMS v1.2.6版本存在安全漏洞，该漏洞源于反射型跨站脚本漏洞，可能导致执行任意JavaScript代码。

Description (English)

FoxCMS is a free, commercial, open-source content management system for the Chinese company FoxCMS. The security gap in version FoxCMS v1.2.6 arises from a reflection-type cross-site script loophole that could lead to the implementation of any JavaScript code.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

黔狐

Published

2025-08-21

Last Modified

2026-02-24

References

https://www.notion.so/FoxCMS-V1-2-6-Reflected-XSS-in-index-php-2222b2fd021080589d27ef8e1b9ebd86?source=copy_link https://nvd.nist.gov/vuln/detail/CVE-2025-55420