📦 Feehicms

CVE-2020-21174 is a critical file upload vulnerability in liufee CMS v2.0.7.1 that allows remote attackers to upload malicious files disguised as images, leading to arbitrary code execution. This affe...

CVE-2020-21489 is a critical file upload vulnerability in Feehicms v2.0.8 that allows remote attackers to upload malicious files and execute arbitrary code on the server. This affects all Feehicms v2....

CVE-2020-21322 is an arbitrary file upload vulnerability in Feehi CMS that allows attackers to upload malicious PHP files. This can lead to remote code execution on affected systems. All Feehi CMS ins...

This vulnerability allows attackers to perform Server-Side Request Forgery (SSRF) attacks against FeehiCMS installations up to version 2.1.1. By manipulating the 'src' parameter in the TimThumb compon...

CVE-2025-65657 is a remote code execution vulnerability in FeehiCMS version 2.1.1 that allows authenticated attackers to upload malicious PHP files through the Ad Management feature. This vulnerabilit...

FeehiCMS version 2.1.1 has a server-side validation flaw where parameters marked as read-only on the client side can be modified by authenticated attackers during transmission. This allows attackers t...

This critical vulnerability in FeehiCMS allows remote attackers to upload arbitrary files without restrictions via the FriendlyLink[image] parameter. Attackers can potentially execute malicious code o...