Vulnerabilities > Feehi > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-08-26 CVE-2020-19709 Cross-site Scripting vulnerability in Feehi Feehicms 0.1.3
Insufficient filtering of the tag parameters in feehicms 0.1.3 allows attackers to execute arbitrary web or HTML via a crafted payload.
network
feehi CWE-79
4.3
4.3
2021-05-24 CVE-2021-30108 Server-Side Request Forgery (SSRF) vulnerability in Feehi CMS 2.1.1
Feehi CMS 2.1.1 is affected by a Server-side request forgery (SSRF) vulnerability.
network
low complexity
feehi CWE-918
6.4
6.4
2021-01-26 CVE-2020-22643 Unrestricted Upload of File with Dangerous Type vulnerability in Feehi CMS 2.1.0
Feehi CMS 2.1.0 is affected by an arbitrary file upload vulnerability, potentially resulting in remote code execution.
network
low complexity
feehi CWE-434
6.5
6.5
2021-01-26 CVE-2020-21146 Cross-site Scripting vulnerability in Feehi CMS 2.0.8
Feehi CMS 2.0.8 is affected by a cross-site scripting (XSS) vulnerability.
network
feehi CWE-79
4.3
4.3