FeehiCMS v2.1.1 was discovered to contain a cross-site scripting (XSS) vulnerability via a crafted payload injected into the Comment box under the Single Page module.

FeehiCMS vulnerable to Cross-Site scripting via crafted payload