CNNVD-202509-272 Information

CNNVD ID

CNNVD-202509-272

Related CVE

CVE-2025-56435

• CNNVD Published: 2025-09-03

Description (Chinese)

FoxCMS是中国黔狐（FoxCMS）公司的一套可免费商用开源的内容管理系统。 FoxCMS v1.2.6及之前版本存在安全漏洞，该漏洞源于文件/DataBackup.php中参数id的错误操作导致SQL注入。

Description (English)

FoxCMS is a free, commercial, open-source content management system for the Chinese company FoxCMS. FoxCMS v1.2.6 and previous versions contained a security loophole, which resulted from the error of parameter id in file/DataBackup.php, resulting in the injection of SQL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

黔狐

Published

2025-09-03

Last Modified

2026-02-24

References

https://www.yuque.com/g/u43151774/zhyb2o/udq6lsnv80vnhbr4/collaborator/join?token=dU5eQpE4j6zEmVuK&source=doc_collaborator https://access.redhat.com/security/cve/cve-2025-56435