VYPR
Medium severity6.1NVD Advisory· Published Sep 7, 2017· Updated Jun 17, 2026

CVE-2017-14193

CVE-2017-14193

Description

The oauth function in controllers/member/api.php in dayrui FineCms 5.0.11 has XSS related to the Referer HTTP header with Internet Explorer.

Affected products

2
  • cpe:2.3:a:finecms_project:finecms:5.0.11:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:finecms_project:finecms:5.0.11:*:*:*:*:*:*:*
    • (no CPE)range: 5.0.11

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.