3 matches found
CVE-2019-15228
FUEL CMS 1.4.4 has XSS in the Create Blocks section of the Admin console. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account but can also impact unauthenticated visitors...
CVE-2019-15228
CVE-2019-15228 affects FUEL CMS 1.4.4. The XSS is in the Create Blocks section of the Admin console, arising from insufficient input validation in the admin UI. Impact could include cookie theft and other malicious actions, with exploitation possible by authenticated users and also affecting unau...
CVE-2019-15228
FUEL CMS 1.4.4 has XSS in the Create Blocks section of the Admin console. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account but can also impact unauthenticated visitors...