Lucene search
+L

6 matches found

cnvd
cnvd
added 2021/09/12 12:0 a.m.18 views

FUEL CMS SQL Injection Vulnerability (CNVD-2021-74294)

FUEL CMS is a content management system CMS based on the Codelgniter framework. FUEL CMS in version 1.5.0 suffers from a SQL injection vulnerability, which originates from the lack of validation of the parameter col in the software's /FUEL/index.php/FUEL/logs/items for externally-inputted SQL...

9.8CVSS10AI score0.01608EPSS
Exploits1References1
osv
osv
added 2021/09/09 4:15 p.m.26 views

CVE-2021-38727

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items...

9.8CVSS8.1AI score0.01608EPSS
Exploits1References3
nvd
nvd
added 2021/09/09 4:15 p.m.24 views

CVE-2021-38727

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items...

9.8CVSS0.01608EPSS
Exploits1References3
prion
prion
added 2021/09/09 4:15 p.m.14 views

Sql injection

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items...

7.5CVSS9.8AI score0.01608EPSS
Exploits1References3Affected Software1
osv
osv
added 2021/09/09 3:15 p.m.14 views

CVE-2021-38723

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/pages/items...

8.8CVSS8.1AI score
Exploits0References1
cve
cve
added 2021/09/09 3:14 p.m.54 views

CVE-2021-38727

FUEL CMS 1.5.0 is vulnerable to SQL Injection via the col parameter in /fuel/index.php/fuel/logs/items. The root cause is lack of validation of the col parameter, allowing externally-inputted SQL statements. Consequences described across sources indicate potential arbitrary SQL execution and data...

9.8CVSS9.9AI score0.01608EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder