Security Advisory

CVE-2017-17103

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-12-04 08:00:00

Last updated 2024-08-05 20:43:59

Assigner mitre

State PUBLISHED

Description

Fiyo CMS 2.0.7 has SQL injection in /apps/app_user/sys_user.php via $_POST[name] or $_POST[email]. This vulnerability can lead to escalation from normal user privileges to administrator privileges.

← Browse all CVEs View on cve.org ↗