CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-22152

Cross Site Scripting vulnerability in daylight studio FUEL- CMS v.1.4.6 allows a remote attacker to execute arbitrary code via the page title, meta description and meta keywords of the pages function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.8%

CVSS Severity

CVSS v3 Score 5.4

References

https://github.com/daylightstudio/FUEL-CMS/issues/552
https://github.com/daylightstudio/FUEL-CMS/issues/552

Products affected by CVE-2020-22152

Thedaylightstudio » Fuel Cms » Version: 1.4.6

cpe:2.3:a:thedaylightstudio:fuel_cms:1.4.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-22152

Products

Pricing

Contact Us