Geeeeeeeek Dingfanzu
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Geeeeeeeek Dingfanzu.
By the Year
In 2026 there have been 0 vulnerabilities in Geeeeeeeek Dingfanzu. Last year, in 2025 Dingfanzu had 1 security vulnerability published. Right now, Dingfanzu is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 0.00 |
| 2024 | 1 | 9.80 |
It may take a day or so for new Dingfanzu vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Geeeeeeeek Dingfanzu Security Vulnerabilities
SQLi in dingfanzuCMS 1.0 via operateOrder.php id param
CVE-2025-28100
- April 15, 2025
A SQL Injection vulnerability in dingfanzuCMS v.1.0 allows a attacker to execute arbitrary code via not filtering the content correctly at the "operateOrder.php" id parameter.
dingfanzu CMS SQLi via /ajax/chpwd.php manipulating username
CVE-2024-8302
9.8 - Critical
- August 29, 2024
A vulnerability was found in dingfanzu CMS up to 29d67d9044f6f93378e6eb6ff92272217ff7225c. It has been rated as critical. Affected by this issue is some unknown functionality of the file /ajax/chpwd.php. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Geeeeeeeek Dingfanzu or by Geeeeeeeek? Click the Watch button to subscribe.
