2 matches found
CVE-2023-33557
Fuel CMS v1.5.2 was discovered to contain a SQL injection vulnerability via the id parameter at /controllers/Blocks.php...
CVE-2023-33557
Fuel CMS v1.5.2 is affected by a SQL injection via the id parameter in /controllers/Blocks.php (CVE-2023-33557). The CVSSv3.1 base score is 8.8 (HIGH) with NETWORK attack, LOW attack complexity, LOW privileges, and no user interaction. Root cause: likely unsafe SQL construction in the Blocks cont...