Mura/Masa CMS - SQL Injection

The Mura/Masa CMS is vulnerable to SQL Injection. id: CVE-2024-32640 info: name: Mura/Masa CMS - SQL Injection author: iamnoooob,rootxharsh,pdresearch severity: critical description: | The Mura/Masa CMS is vulnerable to SQL Injection. impact: | Successful exploitation could lead to unauthorized...

CVE-2024-32640 MasaCMS SQL Injection vulnerability

MASA CMS is an Enterprise Content Management platform based on open source technology. Versions prior to 7.4.5, 7.3.12, and 7.2.7 contain a SQL injection vulnerability in the processAsyncObject method that can result in remote code execution. Versions 7.4.5, 7.3.12, and 7.2.7 contain a fix for th...

CVE-2021-42183

MasaCMS 7.2.1 is affected by a path traversal vulnerability in /index.cfm/api/asset/image/...

CVE-2021-42183

MasaCMS 7.2.1 is affected by a path traversal vulnerability in /index.cfm/api/asset/image/...

Path traversal

MasaCMS 7.2.1 is affected by a path traversal vulnerability in /index.cfm/api/asset/image/...

CVE-2021-42183

Summary: MasaCMS 7.2.1 is affected by a path traversal vulnerability in /index.cfm/_api/asset/image/. This is a vulnerability in the MasaCMS web application, as described in CVE-2021-42183. What is affected: MasaCMS 7.2.1 (product/component: MasaCMS core web application; endpoint: /index.cfm/_api...

CVE-2021-42183

MasaCMS 7.2.1 is affected by a path traversal vulnerability in /index.cfm/api/asset/image/...