Mcms
by Mingsoft
CVEs (22)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-23314 | 0.00 | — | 0.02 | Jan 20, 2022 | MCMS v5.2.4 was discovered to contain a SQL injection vulnerability via /ms/mdiy/model/importJson.do. | |||
| CVE-2022-22928 | 0.00 | — | 0.03 | Jan 20, 2022 | MCMS v5.2.4 was discovered to have a hardcoded shiro-key, allowing attackers to exploit the key and execute arbitrary code. |
- CVE-2022-23314Jan 20, 2022risk 0.00cvss —epss 0.02
MCMS v5.2.4 was discovered to contain a SQL injection vulnerability via /ms/mdiy/model/importJson.do.
- CVE-2022-22928Jan 20, 2022risk 0.00cvss —epss 0.03
MCMS v5.2.4 was discovered to have a hardcoded shiro-key, allowing attackers to exploit the key and execute arbitrary code.
Page 2 of 2