Vulnerabilities > Feehi > Feehi CMS

DATE CVE VULNERABILITY TITLE RISK
2022-07-28 CVE-2022-34140 Cross-site Scripting vulnerability in Feehi CMS 2.1.1
A stored cross-site scripting (XSS) vulnerability in /index.php?r=site%2Fsignup of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username field.
network
low complexity
feehi CWE-79
5.4
5.4
2021-05-24 CVE-2021-30108 Server-Side Request Forgery (SSRF) vulnerability in Feehi CMS 2.1.1
Feehi CMS 2.1.1 is affected by a Server-side request forgery (SSRF) vulnerability.
network
low complexity
feehi CWE-918
6.4
6.4
2021-01-26 CVE-2020-22643 Unrestricted Upload of File with Dangerous Type vulnerability in Feehi CMS 2.1.0
Feehi CMS 2.1.0 is affected by an arbitrary file upload vulnerability, potentially resulting in remote code execution.
network
low complexity
feehi CWE-434
6.5
6.5
2021-01-26 CVE-2020-21146 Cross-site Scripting vulnerability in Feehi CMS 2.0.8
Feehi CMS 2.0.8 is affected by a cross-site scripting (XSS) vulnerability.
network
feehi CWE-79
4.3
4.3