Funadmin

funadmin

26 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (26)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-24782 1Funadmin 1Funadmin Mar 5, 2025 Mar 8, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/database/edit.
CVE-2023-24773 1Funadmin 1Funadmin Mar 5, 2025 Mar 8, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/database/list.
CVE-2023-24780 1Funadmin 1Funadmin Mar 6, 2025 Mar 8, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the id parameter at /databases/table/columns.
CVE-2023-24775 1Funadmin 1Funadmin Mar 5, 2025 Mar 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \member\Member.php.
CVE-2023-24781 1Funadmin 1Funadmin Mar 6, 2025 Mar 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \member\MemberLevel.php.
CVE-2023-24776 1Funadmin 1Funadmin Mar 6, 2025 Mar 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Funadmin v3.2.0 was discovered to contain a remote code execution (RCE) vulnerability via the component \controller\Addon.php.