pkg:Packagist/feehi/feehicms

All known vulnerabilities

• MEDIUM6.5CVE-2025-63523FeehiCMS fails to enforce server-side immutability
• MEDIUM6.1CVE-2025-63520FeehiCMS is vulnerable to cross-site scripting via the id parameter of the User Update function
• MEDIUM6.1CVE-2021-36572FeehiCMS Cross Site Scripting vulnerability
  from 0, <= 2.1.1
• MEDIUM6.1CVE-2020-36607FeehiCMS Cross Site Scripting vulnerability
  from 0, <= 2.0.8
• MEDIUM6.1CVE-2020-20589FeehiCMS vulnerable to Cross Site Scripting
  from 0, <= 2.0.8
• MEDIUM6.1CVE-2020-19709Cross-site scripting in feehicms
  from 0, <= 0.1.3
• MEDIUM5.4CVE-2022-40373FeehiCMS Cross Site Scripting vulnerability
  from 0, <= 2.1.1
• MEDIUM5.4CVE-2021-36573FeehiCMS Unrestricted Upload vulnerability
  from 0, <= 2.1.1
• MEDIUM5.4CVE-2022-40002FeehiCMS Cross Site Scripting vulnerability
  from 0, <= 2.1.1
• MEDIUM5.4CVE-2022-40000FeehiCMS Cross Site Scripting vulnerability
  from 0, <= 2.1.1
• MEDIUM5.4CVE-2022-40001FeehiCMS Cross Site Scripting vulnerability
  from 0, <= 2.1.1
• MEDIUM5.4CVE-2022-40408FeehiCMS vulnerable to Cross-Site scripting via crafted payload
  from 0, <= 2.0.1.1
• MEDIUM4.6CVE-2025-63522FeehiCMS is vulnerable to reverse tabnabbing
  from 0, <= 2.1.1
• MEDIUM4.3CVE-2022-4014Cross-Site Request Forgery in feehi/feehicms
  from 0, <= 2.0.1.1