CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

CVE•added 2026/05/05 7:44 p.m.•3 views

CVE-2026-40329

Masa CMS is affected by a SQL injection in the beanFeed.cfc component (getQuery handling of the sortBy parameter) in versions 7.5.2 and earlier. The vulnerability arises from insufficient sanitization/parameterization of sortBy, allowing an unauthenticated remote attacker to execute arbitrary SQL...

9.3CVSS6AI score0.00163EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 3:19 p.m.•1 views

CVE-2025-67830

Mura before 10.1.14 allows beanFeed.cfc getQuery sortby SQL injection...

9.8CVSS5.8AI score0.00046EPSS

Exploits0References1

NVD•added 2026/03/18 4:16 p.m.•2 views

CVE-2025-67829

Mura before 10.1.14 allows beanFeed.cfc getQuery sortDirection SQL injection...

9.8CVSS0.00046EPSS

Exploits0References1

ATTACKERKB•added 2026/03/18 12:0 a.m.•1 views

CVE-2025-67829

Mura before 10.1.14 allows beanFeed.cfc getQuery sortDirection SQL injection...

5.8AI score0.00046EPSS

Exploits0References2

CVE•added 2026/03/18 12:0 a.m.•3 views

CVE-2025-67830

Mura before 10.1.14 is affected by an SQL injection in beanFeed.cfc getQuery sortby. The vulnerability stems from unsafely handling the sortby parameter in that function. No exploitation details are provided in the documents. Remediation details are not specified here.

9.8CVSS5.8AI score0.00046EPSS

Exploits0References1Affected Software1