Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2020-17463

Fuel CMS | Fuel CMSAdded 2021-12-10Remediation Deadline 2022-06-10

Fuel CMS SQL Injection Vulnerability

FUEL CMS 1.4.7 allows SQL Injection via the col parameter to /pages/items, /permissions/items, or /navigation/items.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-89

References