CVE-2025-45240 Information

Description

foxcms v1.2.5 was discovered to contain a SQL injection vulnerability via the executeCommand method in DataBackup.php.

Reference

https://gist.github.com/chao112122/648033972709fb50b3c89363cd64a9a4 https://gitee.com/qianfox/foxcms