Vulnerabilities > Fiyo > Fiyo CMS > 2.0.1.9.1

DATE CVE VULNERABILITY TITLE RISK
2017-11-21 CVE-2015-3934 SQL Injection vulnerability in Fiyo CMS 2.0.1.9.1
Multiple SQL injection vulnerabilities in Fiyo CMS 2.0_1.9.1 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to apps/app_article/controller/rating.php or (2) user parameter to user/login.
network
low complexity
fiyo CWE-89
7.5