Withdrawn Advisory: Daylight Studio FUEL-CMS SQLi Vulnerability

Withdrawn Advisory This advisory has been withdrawn because this vulnerability does not affect a package in a supported ecosystem. This link has been maintained to preserve external references. Original Description SQL Injection vulnerability in file Basemodulemodel.php in Daylight Studio FUEL-CM...

CVE-2020-24950

SQL Injection vulnerability in file Basemodulemodel.php in Daylight Studio FUEL-CMS version 1.4.9, allows remote attackers to execute arbitrary code via the col parameter to function listitems...