C0Mpu7Er

Name of the Vulnerable Software and Affected Versions: FUEL CMS version 1.4.8 Description: The issue allows SQL injection via the `fuel replace id` parameter in the "pages/replace/1" endpoint. Exploiting this could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. Recommendations: For FUEL CMS version 1.4.8, consider disabling the `fuel replace id` parameter in the "pages/replace/1" endpoint as a temporary workaround until a patch is available. Restrict access to this endpoint to minimize the risk of exploitation. Avoid using the `fuel replace id` parameter until the issue is resolved.