Unrated severityCISA KEVNVD Advisory· Published Aug 13, 2020· Updated Oct 21, 2025
CVE-2020-17463
CVE-2020-17463
Description
FUEL CMS 1.4.7 allows SQL Injection via the col parameter to /pages/items, /permissions/items, or /navigation/items.
Affected products
1- FUEL/FUEL CMSdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- packetstormsecurity.com/files/158840/Fuel-CMS-1.4.7-SQL-Injection.htmlmitrex_refsource_MISC
- cwe.mitre.org/data/definitions/89.htmlmitrex_refsource_MISC
- getfuelcms.commitrex_refsource_MISC
- github.com/daylightstudio/FUEL-CMS/releases/tag/1.4.8mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.