Mcms Security Vulnerabilities and Issues — Mcms CVE List

Lucene search

MingsoftMcms

5 matches found

CVE•added 2022/02/18 8:15 p.m.•97 views

CVE-2021-46062

MCMS v5.2.5 was discovered to contain an arbitrary file deletion vulnerability via the component oldFileName.

7.1CVSS7AI score0.00162EPSS

CVE•added 2018/10/30 6:29 a.m.•60 views

CVE-2018-18831

An issue was discovered in com\mingsoft\cms\action\GeneraterAction.java in MCMS 4.6.5. An attacker can write a .jsp file (in the position parameter) to an arbitrary directory via a ../ Directory Traversal in the url parameter.

7.5CVSS7.4AI score0.00456EPSS

CVE•added 2022/01/26 7:15 p.m.•46 views

CVE-2021-46385

https://gitee.com/mingSoft/MCMS MCMS

7.5CVSS7.6AI score0.0044EPSS

CVE•added 2022/01/26 5:15 p.m.•41 views

CVE-2021-46383

https://gitee.com/mingSoft/MCMS MCMS

7.5CVSS7.6AI score0.0044EPSS

CVE•added 2024/01/16 2:15 a.m.•39 views

CVE-2023-51282

An issue in mingSoft MCMS v.5.2.4 allows a a remote attacker to obtain sensitive information via a crafted script to the password parameter.

7.5CVSS7.2AI score0.00205EPSS