All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2020-17463
NONEKEVpublish date unavailable
CVSS / 10
// description
FUEL CMS 1.4.7 allows SQL Injection via the col parameter to /pages/items, /permissions/items, or /navigation/items.
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2021-12-10 00:00 UTC