Privilege Escalation in Fiyo CMS 2.0.6.1 via Modified Level Parameter

CVE-2017-6823 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Fiyo CMS 2.0.6.1 allows remote authenticated users to gain privileges via a modified level parameter to dapur/ in an app=user&act=edit action.

Learn more about our Cms Pen Testing.