Arbitrary Code Execution via User Name Field in Feehi CMS Login Page

Arbitrary Code Execution via User Name Field in Feehi CMS Login Page

CVE-2021-36572 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Cross Site Scripting (XSS) vulnerability in Feehi CMS thru 2.1.1 allows attackers to run arbitrary code via the user name field of the login page.

Learn more about our Cms Pen Testing.