Share:

CVE-2025-46154 - Foxcms Foxcms

June 3, 2025

Critical 8.4

Foxcms v1.25 has a SQL time injection in the $_POST['dbname'] parameter of installdb.php.

Affected software

Foxcms Foxcms

Reference links

https://github.com/Yf3te/CVE/blob/main/CVE-2025-46154

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.