All 3 CVE vulnerabilities found in FluxCP, with AI-generated Chinese analysis, references, and POCs.
Vendor: rAthena
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-62797 | CSRF in FluxCP account endpoints allows account takeover / state-changing actions CWE-352 | 8.8AI | HighAI | 2025-10-29 |
| CVE-2024-45799 | Javascript Injection in Vending Info/Buyers Info Module in FluxCP CWE-79 | 7.3 | High | 2024-09-16 |
| CVE-2022-4421 | rAthena FluxCP Service Desk Image URL view.php cross site scripting CWE-707 | 3.5 | Low | 2022-12-12 |
All 3 known CVE vulnerabilities affecting FluxCP with full Chinese analysis, references, and POCs where available.