Geeeeeeeek Dingfanzu

3 CVEs affecting Geeeeeeeek Dingfanzu. Latest disclosed: 2025-09-08. Critical: 1, High: 0.

Top CVEs affecting Geeeeeeeek Dingfanzu
CVESeverityScorePublishedSummary
CVE-2025-28100Critical9.82025-04-15A SQL Injection vulnerability in dingfanzuCMS v.1.0 allows a attacker to execute arbitrary code via not filtering the content correctly at the "operateOrder.ph…
CVE-2024-8302Medium6.32024-08-29A vulnerability was found in dingfanzu CMS up to 29d67d9044f6f93378e6eb6ff92272217ff7225c. It has been rated as critical. Affected by this issue is some unknow…
CVE-2024-48341Low3.72025-09-08dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/doAdminAction.php?act=addShop