CVE-2026-30457 | Daylight Studio FuelCMS 1.5.2 /parser/dwoo privilege escalation

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability was found in Daylight Studio FuelCMS 1.5.2. It has been declared as critical. The affected element is an unknown function of the file /parser/dwoo. Such manipulation leads to privilege escalation.

This vulnerability is traded as CVE-2026-30457. The attack may be launched remotely. There is no exploit available.

CVE-2026-30457 | Daylight Studio FuelCMS 1.5.2 /parser/dwoo privilege escalation

Post correlati

CVE-2025-23837 | One Backend Language Plugin up to 1.0 on WordPress cross site scripting

CVE-2025-9799 | Langfuse up to 3.88.0 Webhook promptRouter.ts promptChangeEventSourcing server-side request forgery (Issue 8522)

CVE-2025-8604 | WP Table Builder Plugin up to 2.0.12 on WordPress Shortcode cross site scripting

CVE-2022-45847 | WPAssist.me Countdown Widget Plugin up to 3.1.9.1 on WordPress cross-site request forgery