Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2020-17463 - CERT CVE
CVE-2020-17463
ID
CVE-2020-17463
Sažetak
FUEL CMS 1.4.7 allows SQL Injection via the col parameter to /pages/items, /permissions/items, or /navigation/items.
Reference
http://packetstormsecurity.com/files/158840/Fuel-CMS-1.4.7-SQL-Injection.html
https://cwe.mitre.org/data/definitions/89.html
https://getfuelcms.com
https://github.com/daylightstudio/FUEL-CMS/archive/master.zip
https://github.com/daylightstudio/FUEL-CMS/releases/tag/1.4.8
http://packetstormsecurity.com/files/158840/Fuel-CMS-1.4.7-SQL-Injection.html
https://cwe.mitre.org/data/definitions/89.html
https://getfuelcms.com
https://github.com/daylightstudio/FUEL-CMS/archive/master.zip
https://github.com/daylightstudio/FUEL-CMS/releases/tag/1.4.8
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-17463
CVSS
Base:
7.5
Impact:
6.4
Exploitability:
10.0
Pristup
Vektor
Složenost
Autentikacija
NETWORK
LOW
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
PARTIAL
PARTIAL
PARTIAL
CVSS vektor
AV:N/AC:L/Au:N/C:P/I:P/A:P
Zadnje važnije ažuriranje
07-11-2025 - 22:02
Objavljeno
13-08-2020 - 13:15
