CVE-2017-11418

2017-07-1805:00:00

mitre

www.cve.org

AI Score

Confidence

High

EPSS

0.001

Percentile

48.9%

JSON

Fiyo CMS 2.0.7 has SQL injection in dapur/apps/app_article/controller/article_list.php via $_GET[‘cat’], $_GET[‘user’], $_GET[‘level’], and $GET['iSortCol’.$i].

References

github.com/FiyoCMS/FiyoCMS/issues/5