CVE-2018-16763

Published September 9th, 2018

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

FUEL CMS 1.4.1 allows PHP Code Evaluation via the pages/select/ filter parameter or the preview/ data parameter. This can lead to Pre-Auth Remote Code Execution.

daylightstudio/FUEL-CMS

A CodeIgniter Content Management System

GitHub

1.02K