Filtered by vendor Mrcms Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-24161 1 Mrcms 1 Mrcms 2024-11-21 7.5 High
MRCMS 3.0 contains an Arbitrary File Read vulnerability in /admin/file/edit.do as the incoming path parameter is not filtered.
CVE-2024-24160 1 Mrcms 1 Mrcms 2024-11-21 5.4 Medium
MRCMS 3.0 contains a Cross-Site Scripting (XSS) vulnerability via /admin/system/saveinfo.do.
CVE-2024-48177 1 Mrcms 1 Mrcms 2024-10-30 8.8 High
MRCMS 3.1.2 contains a SQL injection vulnerability via the RID parameter in /admin/article/delete.do.