4 matches found
FUEL CMS Cross-Site Request Forgery Vulnerability (CNVD-2022-59047)
FUEL CMS is a content management system CMS based on the Codelgniter framework. A cross-site request forgery vulnerability exists in FUEL CMS version 1.5.0, which can be exploited by an attacker to forge a malicious request and trick a victim into clicking on it to perform a sensitive operation...
FUEL CMS Cross-Site Scripting Vulnerability (CNVD-2022-38554)
FUEL CMS is a content management system CMS based on the Codelgniter framework.A cross-site scripting vulnerability exists in FUEL CMS version 1.5.1. The vulnerability stems from the program's lack of data validation filtering of user-supplied data and output. An attacker could exploit the...
FUEL CMS SQL Injection Vulnerability (CNVD-2021-74294)
FUEL CMS is a content management system CMS based on the Codelgniter framework. FUEL CMS in version 1.5.0 suffers from a SQL injection vulnerability, which originates from the lack of validation of the parameter col in the software's /FUEL/index.php/FUEL/logs/items for externally-inputted SQL...
FUEL CMS Cross-Site Request Forgery Vulnerability (CNVD-2021-18031)
FUEL CMS is a content management system CMS based on the Codelgniter framework. A cross-site request forgery vulnerability exists in the blocks/create/Create Blocks section of the Admin console in FUEL CMS version 1.4.4. The vulnerability stems from the WEB application not adequately verifying th...