Lucene search
K

278 matches found

NVD
NVD
added 2 days ago6 views

CVE-2026-15516

A vulnerability was detected in MacCMS Pro up to 2022.1000.3005. Impacted is the function step5 of the file application/install/controller/Index.php of the component Installation Module. The manipulation results in authorization bypass. The attack may be launched remotely. The attack requires a...

6.3CVSS0.00274EPSS
Exploits0References6
Cvelist
Cvelist
added 2 days ago36 views

CVE-2026-15516 MacCMS Pro Installation Index.php step5 authorization

A vulnerability was detected in MacCMS Pro up to 2022.1000.3005. Impacted is the function step5 of the file application/install/controller/Index.php of the component Installation Module. The manipulation results in authorization bypass. The attack may be launched remotely. The attack requires a...

6.3CVSS0.00274EPSS
Exploits0References6
EUVD
EUVD
added 2 days ago5 views

EUVD-2026-43258

A vulnerability was detected in MacCMS Pro up to 2022.1000.3005. Impacted is the function step5 of the file application/install/controller/Index.php of the component Installation Module. The manipulation results in authorization bypass. The attack may be launched remotely. The attack requires a...

6.3CVSS5.8AI score0.00274EPSS
Exploits0References6
CVE
CVE
added 2 days ago14 views

CVE-2026-15516

Technical details are not publicly available in the provided documents. Monitor for updates on CVE-2026-15516 for affected versions, impact, and remediation.

6.3CVSS5.8AI score0.00274EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/05 7:50 p.m.10 views

CVE-2026-7578

A weakness has been identified in MacCMS Pro up to 2022.1.3. This vulnerability affects the function install of the file /admi.php/admin/addon/add.html of the component Plugin Installation Handler. Executing a manipulation can lead to unrestricted upload. The attack may be performed from remote...

5.8CVSS5AI score0.00231EPSS
Exploits0References1
NVD
NVD
added 2026/05/01 11:16 a.m.12 views

CVE-2026-7578

A weakness has been identified in MacCMS Pro up to 2022.1.3. This vulnerability affects the function install of the file /admi.php/admin/addon/add.html of the component Plugin Installation Handler. Executing a manipulation can lead to unrestricted upload. The attack may be performed from remote...

5.8CVSS0.00231EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/01 10:45 a.m.32 views

CVE-2026-7578 MacCMS Pro Plugin Installation add.html install unrestricted upload

A weakness has been identified in MacCMS Pro up to 2022.1.3. This vulnerability affects the function install of the file /admi.php/admin/addon/add.html of the component Plugin Installation Handler. Executing a manipulation can lead to unrestricted upload. The attack may be performed from remote...

5.8CVSS0.00231EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/01 10:45 a.m.9 views

CVE-2026-7578 MacCMS Pro Plugin Installation add.html install unrestricted upload

A weakness has been identified in MacCMS Pro up to 2022.1.3. This vulnerability affects the function install of the file /admi.php/admin/addon/add.html of the component Plugin Installation Handler. Executing a manipulation can lead to unrestricted upload. The attack may be performed from remote...

5.8CVSS5.4AI score0.00231EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/01 10:45 a.m.11 views

CVE-2026-7578

A weakness has been identified in MacCMS Pro up to 2022.1.3. This vulnerability affects the function install of the file /admi.php/admin/addon/add.html of the component Plugin Installation Handler. Executing a manipulation can lead to unrestricted upload. The attack may be performed from remote...

5.8CVSS5.4AI score0.00231EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/01 10:45 a.m.13 views

EUVD-2026-26495

A weakness has been identified in MacCMS Pro up to 2022.1.3. This vulnerability affects the function install of the file /admi.php/admin/addon/add.html of the component Plugin Installation Handler. Executing a manipulation can lead to unrestricted upload. The attack may be performed from remote...

5.8CVSS5.4AI score0.00231EPSS
Exploits0References4
CVE
CVE
added 2026/05/01 10:45 a.m.21 views

CVE-2026-7578

MacCMS Pro

5.8CVSS5.4AI score0.00231EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

maccms_pro 访问控制错误漏洞

Maccmspro is a content management system developed by Maccmspro’s individual developers. Versions of Maccmspro prior to 2022.1.3 had an access control vulnerability. This vulnerability stemmed from an unlimited upload issue in the install function of the file/admi.php/admin/addon/add.html within...

5.8CVSS5.8AI score0.00231EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.18 views

PT-2026-36316

Name of the Vulnerable Software and Affected Versions MacCMS Pro versions prior to 2022.1.4 Description A weakness in the Plugin Installation Handler component allows for unrestricted file upload. This issue occurs within the install function of the file '/admi.php/admin/addon/add.html' and can b...

5.8CVSS5.8AI score0.00231EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/26 3:15 p.m.10 views

CVE-2026-4563

A weakness has been identified in MacCMS up to 2025.1000.4052. This vulnerability affects the function orderinfo of the file application/index/controller/User.php of the component Member Order Detail Interface. This manipulation of the argument orderid causes authorization bypass. It is possible ...

5.3CVSS5.4AI score0.00291EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:7 p.m.8 views

CVE-2026-4562

A security flaw has been discovered in MacCMS 2025.1000.4052. This affects an unknown part of the file application/api/controller/Timming.php of the component Timming API Endpoint. The manipulation results in missing authentication. The attack may be performed from remote. The exploit has been...

7.5CVSS6.6AI score0.00517EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/23 12:31 a.m.7 views

EUVD-2026-14339

A weakness has been identified in MacCMS up to 2025.1000.4052. This vulnerability affects the function orderinfo of the file application/index/controller/User.php of the component Member Order Detail Interface. This manipulation of the argument orderid causes authorization bypass. It is possible ...

5.3CVSS5.4AI score0.00291EPSS
Exploits0References5
EUVD
EUVD
added 2026/03/23 12:31 a.m.7 views

EUVD-2026-14337

A security flaw has been discovered in MacCMS 2025.1000.4052. This affects an unknown part of the file application/api/controller/Timming.php of the component Timming API Endpoint. The manipulation results in missing authentication. The attack may be performed from remote. The exploit has been...

7.5CVSS6.6AI score0.00517EPSS
Exploits0References5
NVD
NVD
added 2026/03/23 12:16 a.m.7 views

CVE-2026-4562

A security flaw has been discovered in MacCMS 2025.1000.4052. This affects an unknown part of the file application/api/controller/Timming.php of the component Timming API Endpoint. The manipulation results in missing authentication. The attack may be performed from remote. The exploit has been...

7.5CVSS0.00517EPSS
Exploits0References4
NVD
NVD
added 2026/03/23 12:16 a.m.7 views

CVE-2026-4563

A weakness has been identified in MacCMS up to 2025.1000.4052. This vulnerability affects the function orderinfo of the file application/index/controller/User.php of the component Member Order Detail Interface. This manipulation of the argument orderid causes authorization bypass. It is possible ...

5.3CVSS0.00291EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/23 12:0 a.m.9 views

maccms 安全漏洞

MacCMS is a comprehensive and powerful website building system developed under the PHP+MySQL environment by MagicBlack. Versions of MacCMS prior to 2025.1000.4052 contained security vulnerabilities. These vulnerabilities stemmed from improper handling of the orderid parameter in the Member Order...

5.3CVSS5.8AI score0.00291EPSS
Exploits0References4
Rows per page
Query Builder