CVE-2026-30457 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An issue in the /parser/dwoo component of Daylight Studio FuelCMS v1.5.2 allows attackers to execute arbitrary code via crafted PHP code.
Critical CVSS: 9.8

CVE-2026-30457

An issue in the /parser/dwoo component of Daylight Studio FuelCMS v1.5.2 allows attackers to execute arbitrary code via crafted PHP code.
Vendor
Thedaylightstudio
Product
Dwoo
CWE
CWE-94
Yayın Tarihi
2026-03-26 19:16:59
Güncelleme
2026-03-30 14:11:06
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-94 Dwoo CRITICAL Thedaylightstudio 2026

Referanslar

http://daylight.com http://fuelcms.com https://github.com/daylightstudio/FUEL-CMS/tree/master/fuel/modules/fuel/libraries/parser/dwoo https://pentest-tools.com/PTT-2025-026-PHP-Code-Execution-Via-Dwoo-Escape.pdf