Lucene search
K

17 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:55 a.m.3 views

CVE-2022-23899

MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via search.do in the file /web/MCmsAction.java...

9.8CVSS8.2AI score0.01064EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-1389

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01064EPSS
Exploits1References3
OSV
OSV
added 2022/03/04 12:0 a.m.23 views

GHSA-P94Q-9Q2M-PFH2 SQL injection in net.mingsoft:ms-mcms

MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via the categoryId parameter in the file IContentDao.xml...

9.8CVSS9.8AI score0.07734EPSS
Exploits1References3
NVD
NVD
added 2022/03/03 7:15 p.m.30 views

CVE-2022-23898

MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via the categoryId parameter in the file IContentDao.xml...

9.8CVSS0.07734EPSS
Exploits1References1
NVD
NVD
added 2022/03/03 7:15 p.m.27 views

CVE-2022-23899

MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via search.do in the file /web/MCmsAction.java...

9.8CVSS0.01064EPSS
Exploits1References1
Prion
Prion
added 2022/03/03 7:15 p.m.13 views

Sql injection

MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via the categoryId parameter in the file IContentDao.xml...

7.5CVSS9.8AI score0.07734EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/03/03 7:15 p.m.15 views

Sql injection

MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via search.do in the file /web/MCmsAction.java...

7.5CVSS9.8AI score0.01064EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/03/03 6:1 p.m.31 views

CVE-2022-23898

MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via the categoryId parameter in the file IContentDao.xml...

10AI score0.07734EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/03/03 6:1 p.m.31 views

CVE-2022-23899

MCMS v5.2.5 was discovered to contain a SQL injection vulnerability via search.do in the file /web/MCmsAction.java...

10AI score0.01064EPSS
Exploits1References1
CVE
CVE
added 2022/03/03 6:1 p.m.106 views

CVE-2022-23899

CVE-2022-23899 concerns MCMS v5.2.5, where a SQL injection vulnerability exists through the search.do endpoint in the file /web/MCmsAction.java. The issue is documented across multiple feeds (NVD, Red Hat, CNVD, OSV, GHSA, etc.) and consistently described as SQL injection in the MingSoft MCMS sys...

9.8CVSS9.8AI score0.01064EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/02/19 12:1 a.m.15 views

GHSA-GC79-GH4F-9G6W Server Side Template Injection in MCMS

MCMS v5.2.5 was discovered to contain a Server Side Template Injection SSTI vulnerability via the Template Management module...

9.1CVSS9.4AI score0.02731EPSS
Exploits1References2
NVD
NVD
added 2022/02/18 8:15 p.m.22 views

CVE-2021-46063

MCMS v5.2.5 was discovered to contain a Server Side Template Injection SSTI vulnerability via the Template Management module...

9.1CVSS0.02731EPSS
Exploits1References1
Prion
Prion
added 2022/02/18 8:15 p.m.16 views

Arbitrary file deletion

MCMS v5.2.5 was discovered to contain an arbitrary file deletion vulnerability via the component oldFileName...

5.8CVSS6.9AI score0.00755EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/02/18 8:15 p.m.18 views

Sql injection

MCMS v5.2.5 was discovered to contain a Server Side Template Injection SSTI vulnerability via the Template Management module...

6.4CVSS9.4AI score0.02731EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/18 7:36 p.m.27 views

CVE-2021-46063

MCMS v5.2.5 was discovered to contain a Server Side Template Injection SSTI vulnerability via the Template Management module...

9.6AI score0.02731EPSS
Exploits1References1
CVE
CVE
added 2022/02/18 7:36 p.m.114 views

CVE-2021-46062

MCMS 5.2.5 is affected by an arbitrary file deletion vulnerability in the oldFileName handling. The issue arises from ms-basic

7.1CVSS7AI score0.00755EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/18 7:36 p.m.30 views

CVE-2021-46062

MCMS v5.2.5 was discovered to contain an arbitrary file deletion vulnerability via the component oldFileName...

7.2AI score0.00755EPSS
Exploits1References1
Rows per page
Query Builder