Maccms Security Vulnerabilities and Issues — Maccms CVE List

Lucene search

MaccmsMaccms

6 matches found

CVE•added 2022/03/16 1:15 p.m.•76 views

CVE-2021-45787

There is a stored Cross Site Scripting (XSS) vulnerability in maccms v10 through adding videos. XSS code can be inserted at parameter positions including name and remarks.

5.4CVSS5.1AI score0.00191EPSS

CVE•added 2022/06/21 1:15 p.m.•51 views

CVE-2022-31302

maccms8 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Server Group text field.

5.4CVSS5.3AI score0.00181EPSS

CVE•added 2022/06/21 1:15 p.m.•44 views

CVE-2022-31303

maccms10 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Server Group text field.

5.4CVSS5.3AI score0.00181EPSS

CVE•added 2021/08/11 9:15 p.m.•39 views

CVE-2020-21362

A cross site scripting (XSS) vulnerability in the background search function of Maccms10 allows attackers to execute arbitrary web scripts or HTML via the 'wd' parameter.

5.4CVSS5.5AI score0.00236EPSS

CVE•added 2025/05/27 6:15 p.m.•32 views

CVE-2025-45475

maccms10 v2025.1000.4047 is vulnerable to Server-Side request forgery (SSRF) in Friend Link Management.

5.4CVSS6.9AI score0.00051EPSS

CVE•added 2021/10/04 9:15 p.m.•30 views

CVE-2020-21434

Maccms 10 contains a cross-site scripting (XSS) vulnerability in the Editing function under the Member module. This vulnerability is exploited via a crafted payload in the nickname text field.

5.4CVSS5.2AI score0.00206EPSS