Fuel Cms CVEs and Security Vulnerabilities

Filtered by vendor Daylightstudio Subscriptions

Filtered by product Fuel Cms Subscriptions

Switch to Advanced Search (Beta)

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-30457	1 Daylightstudio	1 Fuel Cms	2026-03-27	N/A
An issue in the /parser/dwoo component of Daylight Studio FuelCMS v1.5.2 allows attackers to execute arbitrary code via crafted PHP code.
CVE-2026-30458	1 Daylightstudio	1 Fuel Cms	2026-03-27	N/A
An issue in Daylight Studio FuelCMS v1.5.2 allows attackers to exfiltrate users' password reset tokens via a mail splitting attack.
CVE-2026-30463	1 Daylightstudio	1 Fuel Cms	2026-03-27	N/A
Daylight Studio FuelCMS v1.5.2 was discovered to contain a SQL injection vulnerability via the /controllers/Login.php component.

Page 1 of 1.