daylightstudio/FUEL-CMS

Issues

• A stored XSS vulnerability exists in FUEL-CMS-1.5.2

  #608 opened 8 months ago by DMIND-NLL
  0

• Reflected Cross-Site Scripting(XSS) in Navigation

  #607 opened 10 months ago by liyako
  1

• FUEL CMS 1.5.2 allows SQL Injection via parameter 'id' in fuel/modules/fuel/controllers/Blocks.php

  #604 opened 2 years ago by bcvgh
  2

• cannot get to the admin page

  #602 opened 2 years ago by GrandM1961
  4

• Prolem when create page from fuel admin page

  #601 opened 2 years ago by sontq
  15

• Support page link to "Get in touch" leads to 404

  #600 opened 2 years ago by olivierlacan
  0

• HTML Injection Issue

  #593 opened 3 years ago by 74616e696d
  2

• Docker

  #599 opened 2 years ago by noraj
  0

• Create SECURITY.md

  #596 opened 2 years ago by JamieSlome
  1

• A stored cross-site scripting (XSS) vulnerability exists in FUEL-CMS-1.5.1

  #595 opened 3 years ago by GiDunPar
  0

• Can't login to Fuel 1.5.1 when CSRF is enabled

  #594 opened 3 years ago by additiverich
  1

• Is encryption_key used in any way in Fuel_assets::upload method?

  #592 opened 3 years ago by ferran-romero
  2

• Windows Defender Threat in MY_string_helper.php

  #590 opened 3 years ago by harkus
  1

• A stored cross-site scripting (XSS) vulnerability exists in FUEL-CMS-1.5.1

  #589 opened 3 years ago by able403
  0

• CSRF in Site Variables in Fuel CMS 1.5.0

  #588 opened 3 years ago by warmachine-57
  0

• Fuel CMS 1.5.0 contains a CSRF vulnerability on Site Variables Module

  #587 opened 3 years ago by warmachine-57
  0

• Fuel CMS 1.5.0 contains a CSRF Vulnerability on Site Variables Module

  #586 opened 3 years ago by warmachine-57
  0

• FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/logs/items

  #582 opened 3 years ago by Topsec-bunney
  1

• forum.getfuelcms.com email support not working

  #585 opened 3 years ago by claudiunv
  4

• FUEL CMS 1.5.0 contains a cross-site request forgery (CSRF) vulnerability

  #584 opened 3 years ago by Topsec-bunney
  1

• Host header attack vulnerability exists in fuel CMS 1.5.0. An attacker can use man in the middle attack to attack users such as phishing.

  #580 opened 3 years ago by Topsec-bunney
  0

• Fuel CMS 1.5.0 has a brute force vulnerability

  #581 opened 3 years ago by Topsec-bunney
  0

• FUEL CMS 1.4.13 contains a cross-site request forgery (CSRF) vulnerability

  #578 opened 3 years ago by leerina
  0

• FUEL CMS 1.5.0 allows SQL Injection via parameter 'col' in /fuel/index.php/fuel/pages/items

  #583 opened 3 years ago by Topsec-bunney
  0

• FUEL CMS 1.4.13 contains a cross-site request forgery (CSRF) vulnerability

  #579 opened 3 years ago by leerina
  0

• XSS in Dashboard

  #538 opened 4 years ago by Balis0ng
  0

• bypass filter XSS vunerability

  #559 opened 4 years ago by leerina
  0

• FUEL-CMS V1.4.13 Cross-site request forgery (CSRF) vulnerability

  #576 opened 4 years ago by yyymmm1211
  0

• then i am installed

  #558 opened 4 years ago by humayunsaleem410
  6

• Error of Folder writable

  #545 opened 4 years ago by MusahMusah
  1

• XSS in pages

  #552 opened 4 years ago by pxss
  0

• Start file missing on FUEL_CMS 1.4.1

  #577 opened 4 years ago by 3ct0s
  7

• Code execution in navigation/upload

  #553 opened 4 years ago by pxss
  0

• getshell in assets

  #551 opened 4 years ago by pxss
  1

• Vulnerability - SQL Injection

  #562 opened 4 years ago by sie504
  2

• Check for `encryption_key`

  #567 opened 4 years ago by marcus-at-localhost
  0

• [Proposal] Multiple Fieldsets of Type `Tab` per Form

  #569 opened 4 years ago by marcus-at-localhost
  2

• Stored XSS in Blocks/Navigation/Site Variables (release/1.4.11)

  #574 opened 4 years ago by 0verall
  0

• FUEL CMS 1.4.11 allows SQL Injection via parameter 'name' in /fuel/permissions/create/

  #575 opened 4 years ago by 0verall
  0

• CodeIgniter 3.1.11

  #573 opened 4 years ago by martynassateika
  1

• FUEL CMS 1.4.8 allows SQL Injection via parameter 'fuel_replace_id' in pages/replace/1

  #561 opened 4 years ago by leerina
  0

• Docs, Forum and Wiki

  #572 opened 4 years ago by marcus-at-localhost
  7

• Forum password reminder

  #565 opened 4 years ago by martynassateika
  5

• General users can modify the administrator password vulnerability

  #560 opened 4 years ago by leerina
  1

• 404 page not found

  #557 opened 5 years ago by liyuange2007
  6

• PHP 7.4 Compatibility

  #554 opened 5 years ago by navjotjsingh
  1

• Error with MariaDB on Raspberry

  #550 opened 5 years ago by mauriziotallarico
  1

• Navigation help

  #547 opened 5 years ago by dimonpanik
  2

• Wrong type in Fuel_user_model::delete()

  #544 opened 5 years ago by marcus-at-localhost
  5

• Base_post_model ignores $foreign_key ' where'

  #540 opened 5 years ago by marcus-at-localhost
  0