Sign in Subscribe

← All advisories

High severity7.5NVD Advisory· Published Oct 16, 2017· Updated May 13, 2026

CVE-2014-9147

CVE-2014-9147

Description

Fiyo CMS 2.0.1.8 allows remote attackers to obtain sensitive information via a direct request to the database backup file in .backup/.

Affected products

1

Fiyo/Fiyo CMS
cpe:2.3:a:fiyo:fiyo_cms:*:*:*:*:*:*:*:*
Range: <=2.0.1.8

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

packetstormsecurity.com/files/131165/FiyoCMS-2.0.1.8-XSS-SQL-Injection-URL-Bypass.htmlnvdExploitIssue TrackingThird Party AdvisoryVDB Entry
www.exploit-db.com/exploits/36581/nvdExploitIssue TrackingThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/73437nvdThird Party AdvisoryVDB Entry

News mentions

0

No linked articles in our index yet.