CVE-2026-30461 is an authenticated remote code execution vulnerability in FuelCMS 1.5.2. The vulnerability exists in the /controllers/Installer.php file and specifically in the add_git_submodule function. This CVE record was published on 2026-04-15T16:16:36.050Z and was last modified on 2026-07-05T17:17:29.290Z. The vulnerability has a CVSS score of 8.3 and a severity of HIGH. Users of FuelCMS 1.5.2 shoul [truncated]
CVE-2026-30460 is an authenticated remote code execution vulnerability in the Blocks module of Daylight Studio FuelCMS v1.5.2. The vulnerability has a CVSS score of 8.8 and is classified as HIGH severity. This vulnerability poses a significant risk to organizations using the affected product, as it can allow attackers to execute malicious code remotely. The exposure question revolves around whether affect [truncated]