CVE-2017-11419by Jeremyin Security Bulletinson Posted on July 18, 2017 Fiyo CMS 2.0.7 has SQL injection in /apps/app_article/controller/editor.php via $_POST[‘id’] and $_POST[‘art_title’].