CVE-2025-51650
Published
CVSS v3
5.6
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT
Description
An arbitrary file upload vulnerability in the component /controller/PicManager.php of FoxCMS v1.2.6 allows attackers to execute arbitrary code via uploading a crafted template file.
GitHub