PT-2018-13726 · Fuel Cms · Fuel Cms
Name of the Vulnerable Software and Affected Versions: FUEL CMS version 1.4.1 Description: The issue allows for PHP code evaluation, potentially leading to pre-authentication remote code execution. This can be achieved via the filter parameter in the "pages/select/" endpoint or the data parameter...