CVE-2014-9148

Published: 2017-10-16T15:29Z

Last Modified: 2024-11-21T02:20Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Fiyo CMS 2.0.1.8 allows remote attackers to bypass intended access restrictions and execute the (1) "Install and Update" or (2) Backup super administrator function via the view parameter in a direct request to fiyo/dapur. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt