Fuel Cms@* Security Vulnerabilities and Issues — Fuel Cms@* CVE List

Lucene search

ThedaylightstudioFuel Cms*

2 matches found

CVE•added 2018/09/09 9:29 p.m.•229 views

CVE-2018-16763

FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter parameter or the preview/ data parameter. This can lead to Pre-Auth Remote Code Execution.

9.8CVSS9.4AI score0.93933EPSS

CVE•added 2018/09/09 9:29 p.m.•41 views

CVE-2018-16762

FUEL CMS 1.4.1 allows SQL Injection via the layout, published, or search_term parameter to pages/items.

9.8CVSS9.8AI score0.00264EPSS