CVE-2017-11416

Fiyo CMS 2.0.7 has SQL injection in /apps/appcomment/controller/insert.php via the name parameter...

Fiyo CMS SQL Injection Vulnerability (CNVD-2017-23895)

Fiyo CMS is a content management system CMS for creating CMS templates. A SQL injection vulnerability exists in the dapur/apps/appcomment/syscomment.php file in Fiyo CMS version 2.0.7. A remote attacker can exploit the vulnerability with $POST'comment', $POST'name', $POST'web', $POST'email',...