RSS   Vulnerabilities for 'Mara cms'   RSS

2021-10-28
 
CVE-2021-36547

CWE-434
 

 
A remote code execution (RCE) vulnerability in the component /codebase/dir.php?type=filenew of Mara v7.5 allows attackers to execute arbitrary commands via a crafted PHP file.

 
 
CVE-2020-25422

CWE-79
 

 
A cross site scripting (XSS) vulnerability in menuedit.php of Mara CMS 7.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

 
2020-08-30
 
CVE-2020-24223

CWE-79
 

 
Mara CMS 7.5 allows contact.php?theme= XSS.

 


Copyright 2024, cxsecurity.com

 

Back to Top