A vulnerability was found in Fuel CMS up to 1.5.0 (Content Management System). It has been declared as critical. Affected by this vulnerability is some unknown functionality in the library fuel/modules/fuel/libraries/Asset.php of the component Host Header Handler. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com.
Fuel CMS up to 1.5.0 Host Header Asset.php Privilege Escalation
- Virtual Patching
- August 10, 2021
- 7:04 am
Contact us to get started
CVE-2022-1840 : Home Clean Services Management System Stored Cross-Site Scripting (XSS)
Description Persistent XSS (or Stored XSS) attack is one of the three major categories of XSS attacks, the others being
CVE-2022-1558 : Multiple Stored Cross-Site Scripting vulnerabilities in WordPress curtain plugin 1.0.2
Description Several Cross-Site Scripting vulnerabilities in the Curtain WordPress plugin. Due to these Cross-Site Scripting vulnerabilities, an attacker would be
CVE-2022-AVAST2 : Self-Defense Bypass via Repairing Function
Description It was noted that there is security checking to prevent some of the Avast processes from loading of undesired/unsigned