CVE-2025-29180 | FoxCMS up to 1.25 POST Parameter url_prefix/domain/my_website sql injection
A vulnerability was found in FoxCMS up to 1.25. It has been declared as critical. This vulnerability affects unknown code of the component POST Parameter Handler. The manipulation of the argument url_prefix/domain/my_website leads to sql injection.
This vulnerability was named CVE-2025-29180. The attack can be initiated remotely. There is no exploit available.