CVE-2021-36573: FeehiCMS Unrestricted Upload vulnerability

December 15, 2022 (updated December 17, 2022)

File Upload vulnerability in Feehi CMS thru 2.1.1 allows attackers to run arbitrary code via crafted image upload.

References

github.com/advisories/GHSA-67mh-hw8v-x8v9
github.com/liufee/cms/issues/59
nvd.nist.gov/vuln/detail/CVE-2021-36573

Detect and mitigate CVE-2021-36573 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →