Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:21 p.m.12 views

CVE-2026-3325

SQL injection SQLi in MegaCMS v12.0.0, specifically in the “idterritorio” parameter of the “/webcomunications/cms/getprovincias” endpoint. The vulnerability arises from inadequate validation and sanitisation of user input. Specifically, via a POST request, the “idterritorio” parameter, used...

10CVSS6AI score0.00267EPSS
Exploits0References1
NVD
NVD
added 2026/04/29 9:16 a.m.6 views

CVE-2026-3325

SQL injection SQLi in MegaCMS v12.0.0, specifically in the “idterritorio” parameter of the “/webcomunications/cms/getprovincias” endpoint. The vulnerability arises from inadequate validation and sanitisation of user input. Specifically, via a POST request, the “idterritorio” parameter, used...

10CVSS0.00267EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/29 8:37 a.m.6 views

EUVD-2026-26199

SQL injection SQLi in MegaCMS v12.0.0, specifically in the “idterritorio” parameter of the “/webcomunications/cms/getprovincias” endpoint. The vulnerability arises from inadequate validation and sanitisation of user input. Specifically, via a POST request, the “idterritorio” parameter, used...

10CVSS6.2AI score0.00267EPSS
Exploits0References1
CVE
CVE
added 2026/04/29 8:37 a.m.17 views

CVE-2026-3325

MegaCMS v12.0.0 is affected by a SQL injection in the /web_comunications/cms/get_provincias endpoint, via the POST parameter id_territorio after the registration form submission. The vulnerability stems from insufficient validation/sanitisation of user input, allowing an unauthenticated attacker ...

10CVSS6.2AI score0.00267EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.11 views

PT-2026-35884

Name of the Vulnerable Software and Affected Versions MegaCMS version 12.0.0 Description Inadequate validation and sanitization of user input allows an unauthenticated attacker to execute arbitrary SQL queries via a POST request. The issue is located in the "/web comunications/cms/get provincias"...

10CVSS6AI score0.00267EPSS
Exploits0References4
Rows per page
Query Builder