Vulnerabilities > Fastadmin
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-19 | CVE-2024-7928 | Path Traversal vulnerability in Fastadmin A vulnerability, which was classified as problematic, has been found in FastAdmin up to 1.3.3.20220121. | 7.5 |
| 2024-08-04 | CVE-2024-7453 | Cross-site Scripting vulnerability in Fastadmin 1.5.0.20240328 A vulnerability was found in FastAdmin 1.5.0.20240328. | 4.8 |
| 2021-12-13 | CVE-2021-43117 | Unrestricted Upload of File with Dangerous Type vulnerability in Fastadmin 1.2.1 fastadmin v1.2.1 is affected by a file upload vulnerability which allows arbitrary code execution through shell access. | 9.8 |
| 2021-02-23 | CVE-2020-26609 | Cross-site Scripting vulnerability in Fastadmin 1.0.0.20200506 fastadmin V1.0.0.20200506_beta contains a cross-site scripting (XSS) vulnerability which may allow an attacker to obtain administrator credentials to log in to the background. | 5.4 |
| 2020-12-10 | CVE-2020-25967 | Injection vulnerability in Fastadmin 1.0.0.20200506 The member center function in fastadmin V1.0.0.20200506_beta is vulnerable to a Server-Side Template Injection (SSTI) vulnerability. | 8.8 |
| 2020-11-17 | CVE-2020-21665 | SQL Injection vulnerability in Fastadmin 1.0.0.20191212 In fastadmin V1.0.0.20191212_beta, when a user with administrator rights has logged in, a malicious parameter can be passed for SQL injection in URL /admin/ajax/weigh. | 7.2 |
| 2019-10-10 | CVE-2019-17432 | Cross-site Scripting vulnerability in Fastadmin 1.0.0.20190705 An issue was discovered in fastadmin 1.0.0.20190705_beta. | 6.5 |
| 2019-10-10 | CVE-2019-17431 | Cross-Site Request Forgery (CSRF) vulnerability in Fastadmin 1.0.0.20190705 An issue was discovered in fastadmin 1.0.0.20190705_beta. | 8.8 |
| 2019-04-11 | CVE-2019-11077 | Cross-Site Request Forgery (CSRF) vulnerability in Fastadmin 1.0.0.20190111 FastAdmin V1.0.0.20190111_beta has a CSRF vulnerability to add a new admin user via the admin/auth/admin/add?dialog=1 URI. | 8.8 |
| 2018-04-22 | CVE-2018-10268 | Cross-site Scripting vulnerability in Fastadmin 1.0.0.20180417 An issue was discovered in FastAdmin V1.0.0.20180417_beta. | 5.4 |