26 matches found
PT-2026-26085
CVE-2025-67829 Mura before 10.1.14 allows beanFeed.cfc getQuery sortDirection SQL injection. https://t.co/EsT6nGpd9g...
PT-2026-26086
CVE-2025-67830 Mura before 10.1.14 allows beanFeed.cfc getQuery sortby SQL injection. https://t.co/IUknqurxhS...
Mura 安全漏洞
Mura is a content management system developed by Mura Corporation. Versions of Mura prior to 10.1.14 contained security vulnerabilities, which were caused by SQL injection attacks in the getQuery and sortby parameters of the beanFeed.cfc file...
CVE-2025-67829
CVE-2025-67829 affects Mura prior to 10.1.14. The issue is a SQL injection in beanFeed.cfc getQuery sortDirection, enabling high-severity (CVSS 9.8) impact with network attack vector and no user interaction. Affected component: Mura CMS (beanFeed.cfc). Root cause: improper handling of sortDirecti...
Mura 安全漏洞
Mura is a content management system developed by Mura Corporation. Versions of Mura prior to 10.1.14 contained security vulnerabilities, which were caused by SQL injection attacks in the getQuery sortDirection parameter of the beanFeed.cfc file...
An SQL injection vulnerability exists in the DBSHOP_0.9.3_Beta getQuery() function.
DBShop is an open source e-commerce online store system developed using endFramework. DBSHOP0.9.3Beta suffers from SQL injection vulnerability. Due to the /DBSHOP/module/Shopfront/src/Shopfront/Controller/GoodslistController.php at indexAction first through getQuery to get all the parameters,...