VYPR
Critical severity9.8OSV Advisory· Published Aug 11, 2025· Updated Apr 15, 2026

CVE-2024-32640

CVE-2024-32640

Description

MASA CMS is an Enterprise Content Management platform based on open source technology. Versions prior to 7.4.5, 7.3.12, and 7.2.7 contain a SQL injection vulnerability in the processAsyncObject method that can result in remote code execution. Versions 7.4.5, 7.3.12, and 7.2.7 contain a fix for the issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Masacms/MasacmsOSV2 versions
    5.5, 6.2.6161, 6.2.6527, …+ 1 more
    • (no CPE)range: 5.5, 6.2.6161, 6.2.6527, …
    • (no CPE)range: <7.4.5, <7.3.12, <7.2.7

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.