CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2023/04/28 8:15 p.m.•1 views

CVE-2023-26781

SQL injection vulnerability in mccms 2.6 allows remote attackers to run arbitrary SQL commands via Author Center -Reader Comments -Search...

9.8CVSS7.5AI score0.00455EPSS

Exploits1References1

NVD•added 2023/04/28 8:15 p.m.•8 views

CVE-2023-26781

SQL injection vulnerability in mccms 2.6 allows remote attackers to run arbitrary SQL commands via Author Center -Reader Comments -Search...

9.8CVSS9.8AI score0.00455EPSS

Exploits1References1

Prion•added 2023/04/28 8:15 p.m.•13 views

Sql injection

SQL injection vulnerability in mccms 2.6 allows remote attackers to run arbitrary SQL commands via Author Center -Reader Comments -Search...

7.5CVSS9.8AI score0.00455EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2023/04/28 12:0 a.m.•3 views

PT-2023-20796 · Mccms · Mccms

Name of the Vulnerable Software and Affected Versions: mccms version 2.6 Description: The issue allows remote attackers to run arbitrary SQL commands via the Author Center -Reader Comments -Search function. This can be exploited by accessing the Author Center and then navigating to Reader Comment...

9.8CVSS8.5AI score0.00455EPSS

Exploits1References7