Fiyo CMS 2.0.7 has an arbitrary file read vulnerability in dapur/apps/app_theme/libs/check_file.php via $_GET['src'] or $_GET['name'].
References
Link | Resource |
---|---|
https://github.com/FiyoCMS/FiyoCMS/issues/11 | Exploit Issue Tracking Patch Third Party Advisory |
Configurations
Information
Published : 2017-12-04 00:29
Updated : 2017-12-15 07:10
NVD link : CVE-2017-17104
Mitre link : CVE-2017-17104
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
fiyo
- fiyo_cms