Lucene search
GitHub Advisory DatabaseGHSA-65V6-3C9M-HMRPHistoryJan 26, 2023 - 9:30 p.m.
Arbitrary file write in net.mingsoft:ms-mcms
2023-01-2621:30:20
CWE-434
GitHub Advisory Database
github.com
12
arbitrary file write
vulnerability
mcms
software
component
net.mingsoft
ms/template/writefilecontent.do
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
38.0%
MCMS v5.2.10 and below was discovered to contain an arbitrary file write vulnerability via the component ms/template/writeFileContent.do.
Affected configurations
Node
net.mingsoftms-mcmsRange≤5.2.10
| Vendor | Product | Version | CPE |
|---|---|---|---|
| net.mingsoft | ms-mcms | * | cpe:2.3:a:net.mingsoft:ms-mcms:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2022-47042
2023-01-24 00:00:00
osv
osv
CVE-2022-47042
2023-01-26 21:18:02
Arbitrary file write in net.mingsoft:ms-mcms
2023-01-26 21:30:20
prion
prion
Arbitrary file deletion
2023-01-26 21:18:00
cve
cve
CVE-2022-47042
2023-01-26 21:18:02
nvd
nvd
CVE-2022-47042
2023-01-26 21:18:02
veracode
veracode
Arbitrary File Write
2023-02-08 06:46:03
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
38.0%
Related for GHSA-65V6-3C9M-HMRP