Vulnerabilities (CVE)

Filtered by vendor Mrcms Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-24161 1 Mrcms 1 Mrcms 2024-11-21 N/A 7.5 HIGH
MRCMS 3.0 contains an Arbitrary File Read vulnerability in /admin/file/edit.do as the incoming path parameter is not filtered.
CVE-2024-24160 1 Mrcms 1 Mrcms 2024-11-21 N/A 5.4 MEDIUM
MRCMS 3.0 contains a Cross-Site Scripting (XSS) vulnerability via /admin/system/saveinfo.do.