Fiyo CMS SQL Injection Vulnerability (CNVD-2018-00248)
Fiyo CMS is a content management system CMS for creating CMS templates. A SQL injection vulnerability exists in the /apps/appuser/sysuser.php file in Fiyo CMS version 2.0.7. A remote attacker can exploit this vulnerability to elevate user privileges to administrator privileges...