Fuel Cms@1.5.2 Security Vulnerabilities and Issues — Fuel Cms@1.5.2 CVE List

Lucene search

ThedaylightstudioFuel Cms1.5.2

3 matches found

CVE•added 2024/02/22 8:15 p.m.•5831 views

CVE-2024-25369

A reflected Cross-Site Scripting (XSS) vulnerability in FUEL CMS 1.5.2allows attackers to run arbitrary code via crafted string after the group_id parameter.

5.4CVSS6AI score0.00071EPSS

CVE•added 2023/06/09 6:15 p.m.•128 views

CVE-2023-33557

Fuel CMS v1.5.2 was discovered to contain a SQL injection vulnerability via the id parameter at /controllers/Blocks.php.

8.8CVSS8.9AI score0.00263EPSS

CVE•added 2025/02/12 10:15 p.m.•65 views

CVE-2024-57605

Cross Site Scripting vulnerability in Daylight Studio Fuel CMS v.1.5.2 allows an attacker to escalate privileges via the /fuel/blocks/ and /fuel/pages components.

5.4CVSS6.8AI score0.00036EPSS