Known exploited
Fuel CMS
CVE published 2021-12-10
CVE-2020-17463
CVE-2020-17463 is a Fuel CMS SQL injection vulnerability that CISA has included in its Known Exploited Vulnerabilities catalog. That makes it a high-priority issue for any organization running Fuel CMS, especially if the instance is internet-facing. Based on the supplied metadata, CISA added it on 2021-12-10 and set a remediation due date of 2022-06-10, so any remaining exposure should be treated as overdue.