Fastcms
by Yourui Admin
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-26682 | 0.00 | — | 0.00 | Feb 26, 2026 | An issue in fastCMS before v.0.1.6 allows a local attacker to execute arbitrary code via the PluginController.java component | |||
| CVE-2025-2593 | 0.00 | — | 0.00 | Mar 21, 2025 | A vulnerability has been found in FastCMS up to 0.1.5 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /api/client/article/list. The manipulation of the argument orderBy leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. |
- CVE-2026-26682Feb 26, 2026risk 0.00cvss —epss 0.00
An issue in fastCMS before v.0.1.6 allows a local attacker to execute arbitrary code via the PluginController.java component
- CVE-2025-2593Mar 21, 2025risk 0.00cvss —epss 0.00
A vulnerability has been found in FastCMS up to 0.1.5 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /api/client/article/list. The manipulation of the argument orderBy leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.