FUEL CMS 1.4.8 allows SQL injection via the 'fuel_replace_id' parameter in pages/replace/1. Exploiting this issue could allow an malicious user to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
thedaylightstudio fuel cms 1.4.8 |