CNNVD-202602-831 Information
Feb 05, 2026
cve
CNNVD ID
CNNVD-202602-831
Related CVE
- CNNVD Published: 2026-02-05
Description (Chinese)
PHPFusion是马来西亚PHPFusion公司的一套基于MySql和PHP的开源轻量级内容管理系统。该系统包含新闻、文章和论坛等模块。 PHPFusion 9.03.50版本存在安全漏洞,该漏洞源于add_panel_form函数存在远程代码执行,可能导致执行任意代码。
Description (English)
PHPFusion is an open-source lightweight content management system based on MySql and PHP by PHP Malaysia. The system contains modules such as news, articles and forums. PHPFusion version 9.03.50 contains a security loophole that stems from the remote code execution of the add panel form function, which may result in the execution of any code.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
PHPFusion
Published
2026-02-05
Last Modified
2026-02-24
References
https://www.exploit-db.com/exploits/48278 https://www.php-fusion.co.uk https://www.vulncheck.com/advisories/php-fusion-panelsphp-eval-injection