Show filters
19 Total Results
Displaying 1-10 of 19
Sort by:
Attacker Value
Unknown
CVE-2024-48230
Disclosure Date: October 25, 2024 (last updated November 01, 2024)
funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php.
0
Attacker Value
Unknown
CVE-2024-48229
Disclosure Date: October 25, 2024 (last updated November 01, 2024)
funadmin 5.0.2 has a SQL injection vulnerability in the Curd one click command mode plugin.
0
Attacker Value
Unknown
CVE-2024-48227
Disclosure Date: October 25, 2024 (last updated November 01, 2024)
Funadmin 5.0.2 has a logical flaw in the Curd one click command deletion function, which can result in a Denial of Service (DOS).
0
Attacker Value
Unknown
CVE-2024-48226
Disclosure Date: October 25, 2024 (last updated November 01, 2024)
Funadmin 5.0.2 is vulnerable to SQL Injection in curd/table/savefield.
0
Attacker Value
Unknown
CVE-2024-48225
Disclosure Date: October 25, 2024 (last updated November 01, 2024)
Funadmin v5.0.2 has an arbitrary file deletion vulnerability in /curd/index/delfile.
0
Attacker Value
Unknown
CVE-2024-48224
Disclosure Date: October 25, 2024 (last updated November 01, 2024)
Funadmin v5.0.2 has an arbitrary file read vulnerability in /curd/index/editfile.
0
Attacker Value
Unknown
CVE-2024-48223
Disclosure Date: October 25, 2024 (last updated November 01, 2024)
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/fieldlist.
0
Attacker Value
Unknown
CVE-2024-48222
Disclosure Date: October 25, 2024 (last updated November 01, 2024)
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/edit.
0
Attacker Value
Unknown
CVE-2024-48218
Disclosure Date: October 25, 2024 (last updated November 01, 2024)
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list.
0
Attacker Value
Unknown
CVE-2023-36097
Disclosure Date: June 22, 2023 (last updated February 25, 2025)
funadmin v3.3.2 and v3.3.3 are vulnerable to Insecure file upload via the plugins install.
0
