Fiyo Cms Security Vulnerabilities and Issues — Fiyo Cms CVE List

Lucene search

FiyoFiyo Cms

3 matches found

CVE•added 2017/12/04 8:29 a.m.•42 views

CVE-2017-17103

Fiyo CMS 2.0.7 has SQL injection in /apps/app_user/sys_user.php via $_POST[name] or $_POST[email]. This vulnerability can lead to escalation from normal user privileges to administrator privileges.

8.8CVSS9.1AI score0.00216EPSS

CVE•added 2017/12/04 8:29 a.m.•38 views

CVE-2017-17102

Fiyo CMS 2.0.7 has SQL injection in /system/site.php via $_REQUEST['link'].

7.5CVSS8AI score0.00233EPSS

CVE•added 2017/12/04 8:29 a.m.•37 views

CVE-2017-17104

Fiyo CMS 2.0.7 has an arbitrary file read vulnerability in dapur/apps/app_theme/libs/check_file.php via $_GET['src'] or $_GET['name'].

7.8CVSS7.5AI score0.00435EPSS