PT-2026-30668 · Feehicms · Feehicms
Thinhneee
·
Published
2026-04-06
·
Updated
2026-04-06
·
CVE-2026-31354
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
Feehi CMS version 2.1.1
Description
The Permissions module in Feehi CMS version 2.1.1 contains multiple authenticated stored cross-site scripting (XSS) flaws. Attackers can inject a crafted payload into the
Group, Category, or Description parameters to execute arbitrary web scripts or HTML.Recommendations
Update Feehi CMS to a version that addresses this issue. As a temporary workaround, sanitize all user-supplied input for the
Group, Category, and Description parameters. Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Feehicms