MidnightBSD

Advisories for fearlessgeekmedia

CVE-2025-56429

Cross Site Scripting vulnerability in Fearless Geek Media FearlessCMS v.0.0.2-15 allows a remote attacker to obtain sensitive information via the login.php component.

Products Affected

Vendor Product Version
fearlessgeekmedia fearlesscms 0.0.2-15
CVE-2025-56430

Directory Traversal vulnerability in Fearless Geek Media FearlessCMS v.0.0.2-15 allows a remote attacker to cause a denial of service via the plugin-handler.php and the deleteDirectory function.

Products Affected

Vendor Product Version
fearlessgeekmedia fearlesscms 0.0.2-15
CVE-2025-56431

Directory Traversal vulnerability in Fearless Geek Media FearlessCMS v.0.0.2-15 allows a remote attacker to cause a denial of service via the plugin-handler.php and the file_get_contents() function.

Products Affected

Vendor Product Version
fearlessgeekmedia fearlesscms 0.0.2-15