VYPR

FUEL CMS

by SevenLayers

CVEs (1)

  • CVE-2019-15229HigAug 20, 2019
    risk 0.57cvss 8.8epss 0.01

    FUEL CMS 1.4.4 has CSRF in the blocks/create/ Create Blocks section of the Admin console. This could lead to an attacker tricking the administrator into executing arbitrary code via a specially crafted HTML page.