Security for everyone

CVE-2017-11629 Scanner

Detects 'Cross-Site Scripting (XSS)' vulnerability in FineCMS affects v. through 5.0.10.


Short Info




Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one


Parent Category

CVE-2017-11629 Scanner Detail

FineCMS is a content management system (CMS) designed for building websites and web applications. It is known for its ease of use, flexibility, and compatibility with a wide variety of web development technologies. With a growing number of businesses and individuals relying heavily on online platforms, FineCMS offers an ideal solution for creating, managing, and deploying web content and applications.

However, as with any software product, FineCMS is not without vulnerabilities. One such vulnerability is CVE-2017-11629, which is associated with Cross Site Scripting (XSS) attacks. This vulnerability can be exploited through controllers/api.php via the function parameter in a c=api&m=data2 request. Essentially, this means that an attacker can inject malicious code into a web page or application, ultimately compromising the security of the system and posing a significant threat to the confidentiality, integrity, and availability of sensitive information.

If exploited, the CVE-2017-11629 vulnerability can lead to several negative consequences for both individuals and businesses. For instance, malicious actors can gain unauthorized access to databases, steal sensitive information such as credit card data and customer personal information, and take advantage of system resources through malware infection. Furthermore, the reputation of the organization can be damaged due to data breaches and other cyber attacks, leading to financial losses and loss of customer trust.

In conclusion, FineCMS is a popular CMS that makes web content management and deployment easier. However, vulnerabilities such as CVE-2017-11629 can be a serious threat to the security of the system. To protect against such vulnerabilities, it is essential to take proper precautions such as those listed above. By leveraging the pro features offered by, readers can easily and quickly gain insight into vulnerabilities in their digital assets and take steps to mitigate the risks.



cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture