SQL Injection Vulnerability in Fiyo CMS 2.0.7 via $_POST['parent_id'], $_POST['desc'], $_POST['keys'], and $_POST['level']
CVE-2017-11415 · HIGH Severity
AV:N/AC:L/AU:N/C:P/I:P/A:P
Fiyo CMS 2.0.7 has SQL injection in dapur/apps/app_article/sys_article.php via $_POST['parent_id'], $_POST['desc'], $_POST['keys'], and $_POST['level'].
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.