3 matches found
CVE-2022-26585
creationtimestamp| type| source ---|---|--- 2025-05-01 11:20:11+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2022/CVE-2022-26585.yaml 2025-05-02 21:02:23+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lo7pvr3vs726...
CVE-2022-26585
Mingsoft MCMS v5.2.7 was discovered to contain a SQL injection vulnerability via /cms/content/list...
CVE-2022-26585
Mingsoft MCMS v5.2.7 contains an SQL injection vulnerability in the /cms/content/list API (categoryId parameter). It allows unauthenticated attackers to execute arbitrary SQL on the backend database. Public sources (NUCLEI template, CIRCL, CNVD, GHSA, etc.) confirm the issue and its impact; explo...