Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/03/14 9:5 a.m.8 views

CVE-2025-2196

A vulnerability was found in MRCMS 3.1.2. It has been declared as problematic. Affected by this vulnerability is the function upload of the file /admin/file/upload.do of the component org.marker.mushroom.controller.FileController. The manipulation of the argument path leads to cross site scriptin...

6.1CVSS3.8AI score0.00351EPSS
Exploits1References1
NVD
NVD
added 2025/03/11 2:15 p.m.19 views

CVE-2025-2196

A vulnerability was found in MRCMS 3.1.2. It has been declared as problematic. Affected by this vulnerability is the function upload of the file /admin/file/upload.do of the component org.marker.mushroom.controller.FileController. The manipulation of the argument path leads to cross site scriptin...

6.1CVSS0.00351EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/11 2:0 p.m.7 views

CVE-2025-2196 MRCMS org.marker.mushroom.controller.FileController upload.do upload cross site scripting

A vulnerability was found in MRCMS 3.1.2. It has been declared as problematic. Affected by this vulnerability is the function upload of the file /admin/file/upload.do of the component org.marker.mushroom.controller.FileController. The manipulation of the argument path leads to cross site scriptin...

5.1CVSS3.7AI score0.00351EPSS
Exploits1References4
OSV
OSV
added 2025/03/11 2:0 p.m.8 views

CVE-2025-2196 MRCMS org.marker.mushroom.controller.FileController upload.do upload cross site scripting

A vulnerability was found in MRCMS 3.1.2. It has been declared as problematic. Affected by this vulnerability is the function upload of the file /admin/file/upload.do of the component org.marker.mushroom.controller.FileController. The manipulation of the argument path leads to cross site scriptin...

5.1CVSS3.8AI score0.00351EPSS
Exploits1References6
CVE
CVE
added 2025/03/11 2:0 p.m.65 views

CVE-2025-2196

CVE-2025-2196 affects MRCMS 3.1.2, with the XSS in the upload function (/admin/file/upload.do) of org.marker.mushroom.controller.FileController. Manipulating the path parameter enables cross-site scripting; the attack is remote and the exploit has been disclosed publicly, with vendor non-response...

6.1CVSS3.8AI score0.00351EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder