Multiple cross-site scripting (XSS) vulnerabilities in Fiyo CMS 2.0.1.8 allow remote malicious users to inject arbitrary web script or HTML via the (1) view, (2) id, (3) page, or (4) app parameter to the default URI or the (5) act parameter to dapur/index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fiyo fiyo cms 2.0.1.8 |