2 matches found
Cross-site Scripting (XSS)
feehi/feehicms is vulnerable to cross site scripting. The vulnerability exists due to improper user-input sanitization, which allows a remote attacker to run arbitrary code via uploading a crafted XML file...
Cross-Site Scripting (XSS)
feehi/feehicms is vulnerable to cross-site scripting. The vulnerability exists when sending picture comments in single page module which allows an attacker to inject and execute arbitrary javascript via a crafted payload...