Fuel Cms@1.4.7 Security Vulnerabilities and Issues — Fuel Cms@1.4.7 CVE List

Lucene search

ThedaylightstudioFuel Cms1.4.7

3 matches found

CVE•added 2020/08/13 1:15 p.m.•994 views

CVE-2020-17463

FUEL CMS 1.4.7 allows SQL Injection via the col parameter to /pages/items, /permissions/items, or /navigation/items.

9.8CVSS9.7AI score0.11837EPSS

CVE•added 2021/03/10 2:15 p.m.•35 views

CVE-2020-23722

An issue was discovered in FUEL CMS 1.4.7. There is a escalation of privilege vulnerability to obtain super admin privilege via the "id" and "fuel_id" parameters.

8.8CVSS8.7AI score0.0026EPSS

CVE•added 2021/03/10 2:15 p.m.•29 views

CVE-2020-23721

An issue was discovered in FUEL CMS V1.4.7. An attacker can use a XSS payload and bypass a filter via /fuelCM/fuel/pages/edit/1?lang=english.

5.4CVSS5.2AI score0.00153EPSS