CVE-2025-10993 MuYuCMS Template Management admin.php code injection

A security flaw has been discovered in MuYuCMS up to 2.7. Affected by this issue is some unknown functionality of the file /admin.php of the component Template Management. The manipulation results in code injection. It is possible to launch the attack remotely...

CVE-2025-10993 MuYuCMS Template Management admin.php code injection

A security flaw has been discovered in MuYuCMS up to 2.7. Affected by this issue is some unknown functionality of the file /admin.php of the component Template Management. The manipulation results in code injection. It is possible to launch the attack remotely...

CVE-2025-10993

MuYuCMS up to version 2.7 is affected by a code injection vulnerability in the Template Management component, specifically in /admin.php. The issue arises from an unknown functionality in that file, enabling remote code injection. Public references consistently describe remote exploitation, but n...

PT-2025-39473

Name of the Vulnerable Software and Affected Versions MuYuCMS versions prior to 2.7 Description A security flaw exists in MuYuCMS up to version 2.7. This issue is related to an unknown functionality within the /admin.php file of the Template Management component, allowing for code injection. The...

MuYuCMS 代码注入漏洞

MuYuCMS is MuYuCMS open source a lightweight open source content management system . MuYuCMS 2.7 and previous versions of the code injection vulnerability, the vulnerability stems from the file / admin.php in the template management component has an unknown functionality flaws, which may lead to...

CVE-2025-10787

A vulnerability was found in MuYuCMS up to 2.7. Impacted is an unknown function of the file /index/index.html of the component Add Fiend Link Handler. Performing manipulation of the argument Link URL results in server-side request forgery. The attack may be initiated remotely. The exploit has bee...

CVE-2025-10787

A vulnerability was found in MuYuCMS up to 2.7. Impacted is an unknown function of the file /index/index.html of the component Add Fiend Link Handler. Performing manipulation of the argument Link URL results in server-side request forgery. The attack may be initiated remotely. The exploit has bee...

CVE-2025-10787 MuYuCMS Add Fiend Link index.html server-side request forgery

A vulnerability was found in MuYuCMS up to 2.7. Impacted is an unknown function of the file /index/index.html of the component Add Fiend Link Handler. Performing manipulation of the argument Link URL results in server-side request forgery. The attack may be initiated remotely. The exploit has bee...

CVE-2025-10787

MuYuCMS

PT-2025-38694

Name of the Vulnerable Software and Affected Versions MuYuCMS versions prior to 2.7 Description A server-side request forgery condition exists in MuYuCMS. The issue is located in an unknown function within the /index/index.html file of the Add Fiend Link Handler component. Manipulation of the Lin...

MuYuCMS 安全漏洞

MuYuCMS is a lightweight open source content management system open source by MuYuCMS. A security vulnerability exists in MuYuCMS 2.7 and earlier versions, which stems from the incorrect manipulation of the parameter Link URL of the component Add Fiend Link Handler in the file /index/index.html,...

CVE-2023-27700

MuYuCMS v2.2 was discovered to contain an arbitrary file deletion vulnerability via the component /accessory/picdel.html...

CVE-2023-27701

MuYuCMS v2.2 was discovered to contain an arbitrary file deletion vulnerability via the component /database/sqldel.html...

CVE-2023-1046

A vulnerability classified as critical has been found in MuYuCMS 2.2. This affects an unknown part of the file /admin.php/update/getFile.html. The manipulation of the argument url leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed ...

CVE-2023-1043

A vulnerability was found in MuYuCMS 2.2. It has been classified as problematic. Affected is an unknown function of the file /editor/index.php. The manipulation of the argument dirpath leads to relative path traversal. It is possible to launch the attack remotely. The exploit has been disclosed t...

CVE-2023-1002

A vulnerability, which was classified as problematic, has been found in MuYuCMS 2.2. This issue affects some unknown processing of the file index.php. The manipulation of the argument filepath leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the...

CVE-2023-1044

A vulnerability was found in MuYuCMS 2.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /editor/index.php. The manipulation of the argument filepath leads to relative path traversal. The attack can be launched remotely. The exploit has...

CVE-2023-27701

MuYuCMS v2.2 was discovered to contain an arbitrary file deletion vulnerability via the component /database/sqldel.html...

CVE-2023-27701

MuYuCMS v2.2 was discovered to contain an arbitrary file deletion vulnerability via the component /database/sqldel.html...

Arbitrary file deletion

MuYuCMS v2.2 was discovered to contain an arbitrary file deletion vulnerability via the component /database/sqldel.html...