Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-25q6-m425-9fqr: Feehi CMS Cross-site Scripting

A stored cross-site scripting (XSS) vulnerability in /index.php?r=site%2Fsignup of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username field.

ghsa
#xss#vulnerability#web#git#php

Feehi CMS Cross-site Scripting

Moderate severity GitHub Reviewed Published Jul 29, 2022 • Updated Aug 6, 2022

Related news

Feehi CMS 2.1.1 Remote Code Execution

Feehi CMS version 2.1.1 suffers from an authenticated remote code execution vulnerability.

Feehi CMS 2.1.1 Cross Site Scripting

Feehi CMS version 2.1.1 suffers from a persistent cross site scripting vulnerability.

CVE-2022-34140: GitHub - liufee/cms: Feehi CMS based on yii2

A stored cross-site scripting (XSS) vulnerability in /index.php?r=site%2Fsignup of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username field.

ghsa: Latest News

GHSA-hqmp-g7ph-x543: TunnelVision - decloaking VPNs using DHCP