CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

CNVD•added 2021/09/12 12:0 a.m.•16 views

FUEL CMS SQL Injection Vulnerability (CNVD-2021-74294)

FUEL CMS is a content management system CMS based on the Codelgniter framework. FUEL CMS in version 1.5.0 suffers from a SQL injection vulnerability, which originates from the lack of validation of the parameter col in the software's /FUEL/index.php/FUEL/logs/items for externally-inputted SQL...

9.8CVSS10AI score0.01557EPSS

Exploits1References1

NVD•added 2021/09/09 4:15 p.m.•9 views

CVE-2021-38727

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items...

9.8CVSS0.01557EPSS

Exploits1References3

OSV•added 2021/09/09 4:15 p.m.•22 views

CVE-2021-38727

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items...

9.8CVSS8.1AI score0.01557EPSS

Exploits1References3

Prion•added 2021/09/09 4:15 p.m.•12 views

Sql injection

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items...

7.5CVSS9.8AI score0.01557EPSS

Exploits1References3Affected Software1

OSV•added 2021/09/09 3:15 p.m.•12 views

CVE-2021-38723

FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/pages/items...

8.8CVSS8.1AI score

Exploits0References1

CVE•added 2021/09/09 3:14 p.m.•50 views

CVE-2021-38727

FUEL CMS 1.5.0 is vulnerable to SQL Injection via the col parameter in /fuel/index.php/fuel/logs/items. The root cause is lack of validation of the col parameter, allowing externally-inputted SQL statements. Consequences described across sources indicate potential arbitrary SQL execution and data...

9.8CVSS9.9AI score0.01557EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by