CVE-2025-0482
7.3HIGHA vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. This affects an unknown part of the file /fladmin/user_recoverpwd.php. The manipulation leads to use of de
Published: 1/15/2025Updated: 4/29/2025
Description
A vulnerability, which was classified as critical, was found in Fanli2012 native-php-cms 1.0. This affects an unknown part of the file /fladmin/user_recoverpwd.php. The manipulation leads to use of default credentials. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
AI AnalysisPowered by AI
Affected Products
native-php-cms_projectnative-php-cms
1.0
References
- https://github.com/Fanli2012/native-php-cms/issues/4ExploitIssue TrackingVendor Advisory
- https://github.com/Fanli2012/native-php-cms/issues/4#issue-2769866348ExploitIssue TrackingVendor Advisory
- https://vuldb.com/?ctiid.291927Permissions RequiredVDB Entry
- https://vuldb.com/?id.291927Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.475237Third Party AdvisoryVDB Entry
- https://github.com/Fanli2012/native-php-cms/issues/4ExploitIssue TrackingVendor Advisory
- https://github.com/Fanli2012/native-php-cms/issues/4#issue-2769866348ExploitIssue TrackingVendor Advisory