Linnc1

Name of the Vulnerable Software and Affected Versions: Feehi CMS version 2.0.8 Description: The issue is related to a cross-site scripting (XSS) vulnerability. When the `user name` is inserted as JavaScript code, browsing the post will trigger the XSS. Recommendations: For Feehi CMS version 2.0.8, as a temporary workaround, consider validating and sanitizing the `user name` input to prevent the execution of JavaScript code. At the moment, there is no information about a newer version that contains a fix for this vulnerability.