Vulnerabilities > Fiyo > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-17 | CVE-2020-35373 | Cross-site Scripting vulnerability in Fiyo CMS 2.0.6.1 In Fiyo CMS 2.0.6.1, the 'tag' parameter results in an unauthenticated XSS attack. | 6.1 |
| 2018-10-21 | CVE-2018-18545 | Cross-site Scripting vulnerability in Fiyo CMS 2.0.7 Fiyo CMS 2.0.7 has XSS via the dapur\apps\app_user\edit_user.php name parameter. | 6.1 |
| 2017-08-30 | CVE-2017-13778 | Cross-site Scripting vulnerability in Fiyo CMS 2.0.7 Fiyo CMS 2.0.7 has XSS in dapur\apps\app_config\sys_config.php via the site_name parameter. | 6.1 |