WebFeehi CMS 2.1.0 is affected by an arbitrary file upload vulnerability, potentially resulting in remote code execution. After an administrator logs in, open the administrator image upload page to potentially upload malicious files. 3 CVE-2024-21322: 434: Exec Code 2024-09-15: 2024-09-28: 7.5. None: Remote: Low: WebFeehi. Feehi. CVE ID CVSS Exploit Patch Trends; ... (XSS) vulnerability in FeehiCMS-2.1.1 allows remote attackers to run arbirtary code via the callback parameter to /cms/notify. CVSS 5.4. Exploit. Patched. CVE-2024-40001 Cross Site Scripting (XSS) ...
Server-Side Request Forgery in Feehi CMS - vulners.com
WebSep 23, 2024 · Feehi CMS version 2.1.1 suffers from an authenticated remote code execution vulnerability. tags exploit , remote , code execution advisories CVE-2024-34140 WebMay 24, 2024 · Feehi CMS 2.1.1 is affected by a Server-side request forgery (SSRF) vulnerability. When the user modifies the HTTP Referer header to any url, the server can … dogfish tackle \u0026 marine
[Git][security-tracker-team/security-tracker][master] Process NFUs
WebSep 16, 2024 · CVE-2024-38796 is a disclosure identifier tied to a security vulnerability with the following details. A Host Header Injection vulnerability in Feehi CMS 2.1.1 may allow an attacker to spoof a particular header. This can be exploited by … WebSep 23, 2024 · Feehi CMS 2.1.1 - Remote Code Execution (Authenticated). CVE-2024-34140 . webapps exploit for PHP platform WebHome Tools Exploits & CVE's Feehi CMS 2.1.1 Cross Site Scripting. Tools; Exploits & CVE's; Feehi CMS 2.1.1 Cross Site Scripting. By. The Cyber Post - August 11, 2024. 225. 0. Facebook. Twitter. Pinterest. Linkedin. ReddIt. Authored by Shivam Singh. Feehi CMS version 2.1.1 suffers from a persistent cross site scripting vulnerability. dog face on pajama bottoms