CVE-2025-12920 in FoxCMS情報

要約

〜によって MITRE • 2025年11月10日

A flaw has been found in qianfox FoxCMS up to 1.2.16. Affected by this vulnerability is the function add/edit of the file app/admin/controller/Product.php. This manipulation of the argument Title causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

責任者

VulDB

モデレーション

承諾済み

エントリ

VDB-331640

エクスプロイト

ダウンロード

EPSS

0.00323

アクティビティ

非常低い

ソース

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!