Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mingsoft mcms vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-50578
Mingsoft MCMS v5.2.9 exists to contain a SQL injection vulnerability via the categoryType parameter at /content/list.do.
Mingsoft Mcms 5.2.9
9.8
CVSSv3
CVE-2020-20913
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote malicious user to execute arbitrary code via basic_title parameter.
Mingsoft Mcms 4.7.2
9.8
CVSSv3
CVE-2022-4375
A vulnerability was found in Mingsoft MCMS up to 5.2.9. It has been classified as critical. Affected is an unknown function of the file /cms/category/list. The manipulation of the argument sqlWhere leads to sql injection. It is possible to launch the attack remotely. The exploit ...
Mingsoft Mcms
9.8
CVSSv3
CVE-2022-36599
Mingsoft MCMS 5.2.8 exists to contain a SQL injection vulnerability in /mdiy/model/delete URI via models Lists.
Mingsoft Mcms 5.2.8
9.8
CVSSv3
CVE-2022-36272
Mingsoft MCMS 5.2.8 exists to contain a SQL injection vulnerability in /mdiy/page/verify URI via fieldName parameter.
Mingsoft Mcms 5.2.8
9.8
CVSSv3
CVE-2022-31943
MCMS v5.2.8 exists to contain an arbitrary file upload vulnerability.
Mingsoft Mcms 5.2.8
9.8
CVSSv3
CVE-2022-30506
An arbitrary file upload vulnerability exists in MCMS 5.2.7, allowing an malicious user to execute arbitrary code through a crafted ZIP file.
Mingsoft Mcms 5.2.7
9.8
CVSSv3
CVE-2022-30047
Mingsoft MCMS v5.2.7 exists to contain a SQL injection vulnerability in /mdiy/dict/listExcludeApp URI via orderBy parameter.
Mingsoft Mcms 5.2.7
9.8
CVSSv3
CVE-2022-30048
Mingsoft MCMS 5.2.7 exists to contain a SQL injection vulnerability in /mdiy/dict/list URI via orderBy parameter.
Mingsoft Mcms 5.2.7
9.8
CVSSv3
CVE-2022-27466
MCMS v5.2.27 exists to contain a SQL injection vulnerability in the orderBy parameter at /dict/list.do.
Mingsoft Mcms 5.2.27
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »