Mccms@2.6 Security Vulnerabilities and Issues — Mccms@2.6 CVE List

Lucene search

ChshcmsMccms2.6

2 matches found

CVE•added 2023/04/28 8:15 p.m.•32 views

CVE-2023-26781

SQL injection vulnerability in mccms 2.6 allows remote attackers to run arbitrary SQL commands via Author Center ->Reader Comments ->Search.

9.8CVSS9.7AI score0.00269EPSS

CVE•added 2023/09/17 10:15 p.m.•23 views

CVE-2023-5029

A vulnerability, which was classified as critical, was found in mccms 2.6. This affects an unknown part of the file /category/order/hits/copyright/46/finish/1/list/1. The manipulation with the input '"1 leads to sql injection. The exploit has been disclosed to the public and may be used. The associ...

8.8CVSS6.7AI score0.00032EPSS