Vulnerability Details CVE-2020-22153
File Upload vulnerability in FUEL-CMS v.1.4.6 allows a remote attacker to execute arbitrary code via a crafted .php file to the upload parameter in the navigation function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.053
EPSS Ranking 89.6%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2020-22153
-
cpe:2.3:a:thedaylightstudio:fuel_cms:1.4.6