Show filters
141 Total Results
Displaying 41-50 of 141
Sort by:
Attacker Value
Unknown
CVE-2022-30506
Disclosure Date: June 02, 2022 (last updated February 23, 2025)
An arbitrary file upload vulnerability was discovered in MCMS 5.2.7, allowing an attacker to execute arbitrary code through a crafted ZIP file.
0
Attacker Value
Unknown
CVE-2022-29647
Disclosure Date: June 02, 2022 (last updated February 23, 2025)
An issue was discovered in MCMS 5.2.7. There is a CSRF vulnerability that can add an administrator account via ms/basic/manager/save.do.
0
Attacker Value
Unknown
CVE-2022-30048
Disclosure Date: May 11, 2022 (last updated February 23, 2025)
Mingsoft MCMS 5.2.7 was discovered to contain a SQL injection vulnerability in /mdiy/dict/list URI via orderBy parameter.
0
Attacker Value
Unknown
CVE-2022-30047
Disclosure Date: May 11, 2022 (last updated February 23, 2025)
Mingsoft MCMS v5.2.7 was discovered to contain a SQL injection vulnerability in /mdiy/dict/listExcludeApp URI via orderBy parameter.
0
Attacker Value
Unknown
CVE-2022-27466
Disclosure Date: May 02, 2022 (last updated February 23, 2025)
MCMS v5.2.27 was discovered to contain a SQL injection vulnerability in the orderBy parameter at /dict/list.do.
0
Attacker Value
Unknown
CVE-2022-27340
Disclosure Date: April 22, 2022 (last updated February 23, 2025)
MCMS v5.2.7 contains a Cross-Site Request Forgery (CSRF) via /role/saveOrUpdateRole.do. This vulnerability allows attackers to escalate privileges and modify data.
0
Attacker Value
Unknown
CVE-2022-28036
Disclosure Date: April 12, 2022 (last updated February 23, 2025)
AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_navigation.php
0
Attacker Value
Unknown
CVE-2022-28035
Disclosure Date: April 12, 2022 (last updated February 23, 2025)
Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_blur-save.php
0
Attacker Value
Unknown
CVE-2022-28034
Disclosure Date: April 12, 2022 (last updated February 23, 2025)
AtomCMS 2.0 is vulnerabie to SQL Injection via Atom.CMS_admin_ajax_list-sort.php
0
Attacker Value
Unknown
CVE-2022-28033
Disclosure Date: April 12, 2022 (last updated February 23, 2025)
Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_uploads.php
0
