Cms.maury91 - Maurycms CVE

Filtered by vendor Cms.maury91 Subscribe

Filtered by product Maurycms

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2008-6951	1 Cms.maury91	1 Maurycms	2025-04-09	7.5 HIGH	N/A
MauryCMS 0.53.2 and earlier does not require administrative authentication for Editors/fckeditor/editor/filemanager/browser/default/browser.html, which allows remote attackers to upload arbitrary files via a direct request.
CVE-2008-6952	1 Cms.maury91	1 Maurycms	2025-04-09	7.5 HIGH	N/A
SQL injection vulnerability in Rss.php in MauryCMS 0.53.2 and earlier allows remote attackers to execute arbitrary SQL commands via the c parameter.

Vulnerabilities (CVE)