VYPR

Simple PHP CMS

by Biggidroid

CVEs (4)

  • CVE-2025-15263HigDec 30, 2025
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in BiggiDroid Simple PHP CMS 1.0. Affected is an unknown function of the file /admin/login.php of the component Admin Login. Executing a manipulation of the argument Username can lead to sql injection. The attack can be executed remotely. The…

  • CVE-2025-15495MedJan 9, 2026
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was found in BiggiDroid Simple PHP CMS 1.0. This impacts an unknown function of the file /admin/editsite.php. The manipulation of the argument image results in unrestricted upload. The attack can be launched remotely. The exploit has been made public and could be…

  • CVE-2025-15262MedDec 30, 2025
    risk 0.31cvss 4.7epss 0.00

    A security flaw has been discovered in BiggiDroid Simple PHP CMS 1.0. This impacts an unknown function of the file /admin/edit.php of the component Site Logo Handler. Performing a manipulation of the argument image results in unrestricted upload. Remote exploitation of the…

  • CVE-2025-15169MedDec 29, 2025
    risk 0.31cvss 4.7epss 0.00

    A weakness has been identified in BiggiDroid Simple PHP CMS 1.0. Affected by this issue is some unknown functionality of the file /admin/editsite.php. Executing a manipulation of the argument ID can lead to sql injection. The attack may be performed from remote. The exploit has…