EUVD-2025-16393

Malicious code in bioql PyPI...

CVE-2025-45474

maccms10 v2025.1000.4047 is vulnerable to Server-side request forgery SSRF in Email Settings...

CVE-2025-45474

maccms10 v2025.1000.4047 is vulnerable to Server-side request forgery SSRF in Email Settings...

PT-2025-23170 · Maccms10 · Maccms10

Name of the Vulnerable Software and Affected Versions: maccms10 version 2025.1000.4047 Description: The issue is related to Server-side request forgery SSRF in Email Settings. This means that an attacker could potentially forge requests to internal or external services, bypassing normal security...

CVE-2025-45474

maccms10 v2025.1000.4047 is vulnerable to Server-side request forgery SSRF in Email Settings...

CVE-2025-45474

CVE-2025-45474 affects maccms10 v2025.1000.4047, with a Server-Side Request Forgery (SSRF) vulnerability in Email Settings. The connected sources corroborate SSRF as the issue and note limited public remediation: a temporary workaround is to restrict access to Email Settings until a patch is avai...

CVE-2025-45475

maccms10 v2025.1000.4047 is vulnerable to Server-Side request forgery SSRF in Friend Link Management...

CVE-2025-45475

maccms10 v2025.1000.4047 is vulnerable to Server-Side request forgery SSRF in Friend Link Management...

CVE-2024-46654

A stored cross-site scripting XSS vulnerability in the Add Scheduled Task module of Maccms10 v2024.1000.4040 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

CVE-2022-44870

A reflected cross-site scripting XSS vulnerability in maccms10 v2022.1000.3032 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter under the AD Management module...

CVE-2020-21363

An arbitrary file deletion vulnerability exists within Maccms10...

CVE-2020-21359

An arbitrary file upload vulnerability in the Template Upload function of Maccms10 allows attackers bypass the suffix whitelist verification to execute arbitrary code via adding a character to the end of the uploaded file's name...

CVE-2025-28091

maccms10 v2025.1000.4047 has a Server-Side Request Forgery SSRF vulnerability via Add Article...

CVE-2025-28089

maccms10 v2025.1000.4047 is vulnerable to Server-Side Request Forgery SSRF via the Scheduled Task function...

CVE-2025-28089

maccms10 v2025.1000.4047 is vulnerable to Server-Side Request Forgery SSRF via the Scheduled Task function...

CVE-2025-28091

CVE-2025-28091 pertains to the maccms10 package, version 2025.1000.4047, which is affected by a Server-Side Request Forgery (SSRF) in the Add Article feature. The vulnerability is documented across multiple sources (NVD, Red Hat, CVE list, etc.), confirming the affected product and the vulnerabil...

maccms10 代码问题漏洞

maccms10 is magicblack open source PHP+MYSQL environment using a set of perfect and powerful rapid site building system . maccms10 2021.1000.2000 version of the code problematic vulnerability , the vulnerability stems from its allows attackers to achieve server-side request forgery...

CVE-2022-44870

A reflected cross-site scripting XSS vulnerability in maccms10 v2022.1000.3032 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter under the AD Management module...