Feehi Cms Security Vulnerabilities and Issues — Feehi Cms CVE List

Lucene search

FeehiFeehi Cms

3 matches found

CVE•added 2022/07/28 12:15 a.m.•73 views

CVE-2022-34140

A stored cross-site scripting (XSS) vulnerability in /index.php?r=site%2Fsignup of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username field.

5.4CVSS5.1AI score0.01066EPSS

CVE•added 2022/07/27 2:15 a.m.•62 views

CVE-2022-34971

An arbitrary file upload vulnerability in the Advertising Management module of Feehi CMS v2.1.1 allows attackers to execute arbitrary code via a crafted PHP file.

8.8CVSS8.8AI score0.00166EPSS

CVE•added 2022/09/14 3:15 p.m.•54 views

CVE-2022-38796

A Host Header Injection vulnerability in Feehi CMS 2.1.1 may allow an attacker to spoof a particular header. This can be exploited by abusing password reset emails.

6.1CVSS6.3AI score0.0055EPSS