CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-36570

Cross Site Request Forgery vulnerability in FUEL-CMS 1.4.13 allows remote attackers to run arbitrary code via post ID to /permissions/delete/2---.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.6%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2021-36570

Thedaylightstudio » Fuel Cms » Version: 1.4.13

cpe:2.3:a:thedaylightstudio:fuel_cms:1.4.13

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved