Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mingsoft mcms vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2022-30506
An arbitrary file upload vulnerability exists in MCMS 5.2.7, allowing an malicious user to execute arbitrary code through a crafted ZIP file.
Mingsoft Mcms 5.2.7
668
VMScore
CVE-2020-23262
An issue exists in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do.
Mingsoft Mcms 5.0.0
668
VMScore
CVE-2022-30047
Mingsoft MCMS v5.2.7 exists to contain a SQL injection vulnerability in /mdiy/dict/listExcludeApp URI via orderBy parameter.
Mingsoft Mcms 5.2.7
668
VMScore
CVE-2022-30048
Mingsoft MCMS 5.2.7 exists to contain a SQL injection vulnerability in /mdiy/dict/list URI via orderBy parameter.
Mingsoft Mcms 5.2.7
NA
CVE-2020-20913
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote malicious user to execute arbitrary code via basic_title parameter.
Mingsoft Mcms 4.7.2
NA
CVE-2022-4350
A vulnerability, which was classified as problematic, was found in Mingsoft MCMS 5.2.8. Affected is an unknown function of the file search.do. The manipulation of the argument content_title leads to cross site scripting. It is possible to launch the attack remotely. The exploit h...
Mingsoft Mcms 5.2.8
NA
CVE-2023-50578
Mingsoft MCMS v5.2.9 exists to contain a SQL injection vulnerability via the categoryType parameter at /content/list.do.
Mingsoft Mcms 5.2.9
668
VMScore
CVE-2022-31943
MCMS v5.2.8 exists to contain an arbitrary file upload vulnerability.
Mingsoft Mcms 5.2.8
605
VMScore
CVE-2022-27340
MCMS v5.2.7 contains a Cross-Site Request Forgery (CSRF) via /role/saveOrUpdateRole.do. This vulnerability allows malicious users to escalate privileges and modify data.
Mingsoft Mcms 5.2.7
571
VMScore
CVE-2021-46063
MCMS v5.2.5 exists to contain a Server Side Template Injection (SSTI) vulnerability via the Template Management module.
Mingsoft Mcms 5.2.5
3 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »