CVE-2020-17463
Fuel CMS SQL Injection Vulnerability
CVSS
—
No CVSS
EPSS
90.0%
p100
KEV
YES
Dec 10, 2021
Exploit Today
80
0-100
Published: — · Last modified: —
90.0%EPSS · 30 days90.0%
2026-06-302026-07-16
Product
Fuel CMS / Fuel CMS
Vulnerability
Fuel CMS SQL Injection Vulnerability
Added to KEV
Dec 10, 2021
Remediate by
Jun 10, 2022
Known ransomware use
No
Summary description
FUEL CMS 1.4.7 allows SQL Injection via the col parameter to /pages/items, /permissions/items, or /navigation/items.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2020-17463
No related CVEs by CWE or product.