📦 Bloofoxcms
by Bloofox
🔍 What is Bloofoxcms?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
CVE-2020-36082 is a critical file upload vulnerability in bloofoxCMS that allows remote attackers to upload malicious webshell files. This enables arbitrary code execution and privilege escalation on ...
This SQL injection vulnerability in bloofox v0.5.2.1 allows attackers to execute arbitrary SQL commands via the gid parameter in the admin interface. This affects all systems running the vulnerable ve...
This SQL injection vulnerability in bloofox v0.5.2.1 allows attackers to execute arbitrary SQL commands via the tid parameter in the admin panel. This affects all users running the vulnerable version,...
This SQL injection vulnerability in bloofox v0.5.2.1 allows attackers to execute arbitrary SQL commands via the userid parameter in the admin interface. This affects all users running the vulnerable v...
CVE-2023-27812 is an arbitrary file deletion vulnerability in bloofox v0.5.2 that allows attackers to delete any file on the server via the delete_file() function. This affects all users running bloof...
CVE-2021-44610 allows attackers to execute arbitrary SQL commands via multiple parameters in bloofoxCMS admin interface. This affects all bloofoxCMS installations running versions 0.5.1 through 0.5.2....
CVE-2020-35760 is an unrestricted file upload vulnerability in bloofoxCMS that allows attackers to upload malicious PHP files. This can lead to remote code execution and complete system compromise. Al...
CVE-2020-36141 is an unrestricted file upload vulnerability in BloofoxCMS that allows attackers to bypass MIME type validation by inserting 'image/jpeg' in the Content-Type header. This enables malici...