Mcms@* Security Vulnerabilities and Issues — Mcms@* CVE List

Lucene search

MingsoftMcms*

6 matches found

CVE•added 2022/03/04 10:15 p.m.•103 views

CVE-2021-46384

https://gitee.com/mingSoft/MCMS MCMS

9.8CVSS9.5AI score0.09689EPSS

CVE•added 2022/12/09 8:15 a.m.•58 views

CVE-2022-4375

A vulnerability was found in Mingsoft MCMS up to 5.2.9. It has been classified as critical. Affected is an unknown function of the file /cms/category/list. The manipulation of the argument sqlWhere leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed ...

9.8CVSS8.3AI score0.49341EPSS

CVE•added 2022/01/26 5:15 p.m.•48 views

CVE-2021-46386

File upload vulnerability in mingSoft MCMS through 5.2.5, allows remote attackers to execute arbitrary code via a crafted jspx webshell to net.mingsoft.basic.action.web.FileAction#upload.

9.8CVSS9.6AI score0.06397EPSS

CVE•added 2023/07/28 7:15 a.m.•48 views

CVE-2023-3990

A vulnerability classified as problematic has been found in Mingsoft MCMS up to 5.3.1. This affects an unknown part of the file search.do of the component HTTP POST Request Handler. The manipulation of the argument style leads to cross site scripting. It is possible to initiate the attack remotely....

6.1CVSS4.7AI score0.06179EPSS

CVE•added 2022/01/26 7:15 p.m.•46 views

CVE-2021-46385

https://gitee.com/mingSoft/MCMS MCMS

7.5CVSS7.6AI score0.0044EPSS

CVE•added 2022/01/26 5:15 p.m.•41 views

CVE-2021-46383

https://gitee.com/mingSoft/MCMS MCMS

7.5CVSS7.6AI score0.0044EPSS