Fiyo Cms Security Vulnerabilities and Issues — Fiyo Cms CVE List

Lucene search

FiyoFiyo Cms

2 matches found

CVE•added 2017/03/12 5:59 a.m.•50 views

CVE-2017-6823

Fiyo CMS 2.0.6.1 allows remote authenticated users to gain privileges via a modified level parameter to dapur/ in an app=user&act=edit action.

8.8CVSS8.4AI score0.06845EPSS

CVE•added 2017/12/04 8:29 a.m.•42 views

CVE-2017-17103

Fiyo CMS 2.0.7 has SQL injection in /apps/app_user/sys_user.php via $_POST[name] or $_POST[email]. This vulnerability can lead to escalation from normal user privileges to administrator privileges.

8.8CVSS9.1AI score0.00216EPSS