Unrated severityNVD Advisory· Published Jan 5, 2021· Updated Aug 4, 2024
CVE-2020-26045
CVE-2020-26045
Description
FUEL CMS 1.4.11 allows SQL Injection via parameter 'name' in /fuel/permissions/create/. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- FUEL CMS/FUEL CMSdescription
- Range: <=1.4.11
Patches
Vulnerability mechanics
References
3- getfuelcms.commitrex_refsource_MISC
- github.com/daylightstudio/FUEL-CMS/issues/575mitrex_refsource_MISC
- github.com/daylightstudio/FUEL-CMS/releases/tag/1.4.11mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.