CVE-2021-36573

MEDIUM

Feehi CMS <2.1.1 - RCE

Title source: llm

Description

File Upload vulnerability in Feehi CMS thru 2.1.1 allows attackers to run arbitrary code via crafted image upload.

References (1)

Scores

CVSS v3 5.4
EPSS 0.0021
EPSS Percentile 43.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Products (2)
feehi/feehicms < 2.1.1
feehi/feehicms 0Packagist
Published Dec 15, 2022
Tracked Since Feb 18, 2026