VYPR
Medium severity5.5NVD Advisory· Published Sep 17, 2023· Updated Jun 17, 2026

CVE-2023-5029

CVE-2023-5029

Description

A vulnerability, which was classified as critical, was found in mccms 2.6. This affects an unknown part of the file /category/order/hits/copyright/46/finish/1/list/1. The manipulation with the input '"1 leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-239871.

Affected products

2
  • MCCMS/MCCMScpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <2.6

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.