Описание
FeehiCMS vulnerable to Cross-Site scripting via crafted payload
FeehiCMS versions 2.0.1.1 and prior contain a cross-site scripting (XSS) vulnerability via a crafted payload injected into the Comment box under the Single Page module. There are no patches and no known workarounds for this issue.
Пакеты
Наименование
feehi/feehicms
composer
Затронутые версииВерсия исправления
<= 2.0.1.1
Отсутствует
Связанные уязвимости
CVSS3: 5.4
nvd
больше 3 лет назад
FeehiCMS v2.1.1 was discovered to contain a cross-site scripting (XSS) vulnerability via a crafted payload injected into the Comment box under the Single Page module.