Lucene search
+L

6 matches found

CNVD
CNVD
added 2021/09/12 12:0 a.m.19 views

FUEL CMS SQL Injection Vulnerability (CNVD-2021-74294)

FUEL CMS is a content management system CMS based on the Codelgniter framework. FUEL CMS in version 1.5.0 suffers from a SQL injection vulnerability, which originates from the lack of validation of the parameter col in the software's /FUEL/index.php/FUEL/logs/items for externally-inputted SQL...

9.8CVSS10AI score0.01608EPSS
Exploits1References1
NVD
NVD
added 2021/09/09 4:15 p.m.24 views

CVE-2021-38727

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items...

9.8CVSS0.01608EPSS
Exploits1References3
OSV
OSV
added 2021/09/09 4:15 p.m.26 views

CVE-2021-38727

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items...

9.8CVSS8.1AI score0.01608EPSS
Exploits1References3
Prion
Prion
added 2021/09/09 4:15 p.m.14 views

Sql injection

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items...

7.5CVSS9.8AI score0.01608EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2021/09/09 3:15 p.m.14 views

CVE-2021-38723

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/pages/items...

8.8CVSS8.1AI score
Exploits0References1
CVE
CVE
added 2021/09/09 3:14 p.m.54 views

CVE-2021-38727

FUEL CMS 1.5.0 is vulnerable to SQL Injection via the col parameter in /fuel/index.php/fuel/logs/items. The root cause is lack of validation of the col parameter, allowing externally-inputted SQL statements. Consequences described across sources indicate potential arbitrary SQL execution and data...

9.8CVSS9.9AI score0.01608EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder