CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

mccms 漫城CMS is a rapid website builder system by the individual developer of China Smokey River South chshcms. A security vulnerability exists in mccms 漫城CMS version 2.7.0, which stems from the existence of arbitrary file deletion in the Backups.php component, which may result in the execution of...

5.4CVSS7AI score0.00157EPSS

Exploits1References2

CVE•added 2025/08/21 12:0 a.m.•13 views

CVE-2025-51818

CVE-2025-51818 affects MCCMS 2.7.0; Backups.php allows arbitrary file deletion and can enable arbitrary command execution. Root cause and affected component are described across multiple sources (e.g., Red Hat, PT Security, NVD). No remediation/version fix details are provided in the connected do...

5.4CVSS7.9AI score0.00157EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2025/08/21 12:0 a.m.•4 views

PT-2025-34217 · Mccms · Mccms

Name of the Vulnerable Software and Affected Versions: MCCMS version 2.7.0 Description: MCCMS version 2.7.0 is susceptible to arbitrary file deletion via the Backups.php component. This allows an attacker to execute arbitrary commands. Recommendations: At the moment, there is no information about...

5.4CVSS7.6AI score0.00157EPSS

Exploits1References4

Cvelist•added 2025/08/21 12:0 a.m.•8 views

CVE-2025-51818

MCCMS 2.7.0 is vulnerable to Arbitrary file deletion in the Backups.php component. This allows an attacker to execute arbitrary commands...

0.00157EPSS

Exploits1References1

RedhatCVE•added 2025/08/08 12:29 a.m.•6 views

CVE-2025-50234

MCCMS v2.7.0 has an SSRF vulnerability located in the index method of the sys\apps\controllers\api\Gf.php file, where the pic parameter is processed. The pic parameter is decrypted using the sysauth$pic, 1 function, which utilizes a hard-coded key McEncryptionKey bD2voYwPpNuJ7B8, defined in the...

6.5CVSS6.7AI score0.00476EPSS

Exploits1References1

NVD•added 2025/08/06 3:15 p.m.•6 views

CVE-2025-50234

6.5CVSS0.00476EPSS

Exploits1References1