Medium severity6.1NVD Advisory· Published Sep 7, 2017· Updated Jun 17, 2026
CVE-2017-14195
CVE-2017-14195
Description
The call_msg function in controllers/Form.php in dayrui FineCms 5.0.11 might have XSS related to the Referer HTTP header with Internet Explorer.
Affected products
2cpe:2.3:a:finecms_project:finecms:5.0.11:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:finecms_project:finecms:5.0.11:*:*:*:*:*:*:*
- (no CPE)range: =5.0.11
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.