Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

phpfusion — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting phpfusion. AI-powered Chinese analysis, POCs, and references for each vulnerability.

PHPFusion is a lightweight open-source content management system designed for building websites and web applications. Historically, it has been susceptible to multiple security vulnerabilities including remote code execution, cross-site scripting, and privilege escalation flaws. The platform's modular architecture and third-party plugin ecosystem have introduced additional attack vectors. With three CVEs currently on record, PHPFusion's security track record reflects common issues in PHP-based CMS platforms, particularly those related to insufficient input validation and access control. While no major public security incidents have been widely documented, the consistent discovery of vulnerabilities highlights the importance of regular updates and proper hardening for production deployments.

Top products by phpfusion: PHPFusion phpfusion/phpfusion
CVE IDTitleCVSSSeverityPublished
CVE-2023-4480 Arbitrary File Read in Fusion File Manager — PHPFusionCWE-538 5.5 Medium2023-09-05
CVE-2023-2453 Local file Inclusion (LFI) in Forum Infusion via Directory Traversal — PHPFusionCWE-829 8.8 High2023-09-05
CVE-2022-3152 Unverified Password Change in phpfusion/phpfusion — phpfusion/phpfusionCWE-620 8.1 -2022-09-07

This page lists every published CVE security advisory associated with phpfusion. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.