CVE-2020-21322

Description

An arbitrary file upload vulnerability in Feehi CMS v2.0.8 and below allows attackers to execute arbitrary code via a crafted PHP file.

Affected packages (1)

• Packagist/feehi/cmsfrom 0, < 2.0.8.1

References (4)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-21322
• PATCHhttps://github.com/liufee/cms
• WEBhttps://github.com/liufee/cms/commit/ecbfb0ca77874ead5b6e79b96a5e1f94e67475a9
• WEBhttps://github.com/liufee/cms/issues/44