Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:13 p.m.10 views

CVE-2026-40330

Masa CMS is an open source content management system. In versions 7.2.0 through 7.2.9, 7.3.0 through 7.3.14, 7.4.0 through 7.4.9, and 7.5.0 through 7.5.2, a SQL injection vulnerability exists in the beanFeed.cfc component within the getQuery function's handling of the sortDirection parameter. The...

9.3CVSS6.3AI score0.00425EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/05 7:46 p.m.11 views

EUVD-2026-27480

Masa CMS is an open source content management system. In versions 7.2.0 through 7.2.9, 7.3.0 through 7.3.14, 7.4.0 through 7.4.9, and 7.5.0 through 7.5.2, a SQL injection vulnerability exists in the beanFeed.cfc component within the getQuery function's handling of the sortDirection parameter. The...

9.3CVSS6.5AI score0.00425EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/05 7:44 p.m.8 views

EUVD-2026-27478

Masa CMS is an open source content management system. In versions 7.5.2 and earlier, a SQL injection vulnerability exists in the beanFeed.cfc component within the getQuery function's processing of the sortBy parameter. The application fails to properly sanitize or parameterize this input before...

9.3CVSS6AI score0.00302EPSS
Exploits0References1
OSV
OSV
added 2026/05/05 7:44 p.m.3 views

CVE-2026-40329 SQL Injection vulnerability via sortBy in beanFeed

Masa CMS is an open source content management system. In versions 7.5.2 and earlier, a SQL injection vulnerability exists in the beanFeed.cfc component within the getQuery function's processing of the sortBy parameter. The application fails to properly sanitize or parameterize this input before...

9.3CVSS6.2AI score0.00302EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/18 6:31 p.m.4 views

EUVD-2025-208836

Mura before 10.1.14 allows beanFeed.cfc getQuery sortDirection SQL injection...

5.8AI score0.0026EPSS
Exploits0References2
Rows per page
Query Builder