| Title | FeehiCMS 2.1.1 Upload any file you want |
|---|
| Description | ## Description of the vulnerability
FeehiCMS is a Php-based CMS website builder.
FeehiCMS 2.1.1 has an arbitrary file upload vulnerability, which can be exploited by a remote attacker to execute arbitrary code through the /admin/index.php?r=user%2Fcreate component.
## version
2.1.1
Please check the link below for more details:
https://gitee.com/A0kooo/cve_article/blob/master/feehi_cms/file_upload3/Fichkems%20user%20file%20upload%20vulnerability.md |
|---|
| Source | ⚠️ https://gitee.com/A0kooo/cve_article/blob/master/feehi_cms/file_upload3/Fichkems%20user%20file%20upload%20vulnerability.md |
|---|
| User | 0kooo (UID 73212) |
|---|
| Submission | 08/20/2024 10:36 (2 years ago) |
|---|
| Moderation | 08/29/2024 07:33 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 276071 [FeehiCMS up to 2.1.1 index.php?r=user%2Fcreate insert User[avatar] unrestricted upload] |
|---|
| Points | 20 |
|---|