Mingsoft MCMS Article save cross site scripting
CVE-2022-4640

3.5LOW

Key Information:

Vendor: Mingsoft
Status: Mcms
Vendor: CVE Published:; 21 December 2022

What is CVE-2022-4640?

A vulnerability has been found in Mingsoft MCMS 5.2.9 and classified as problematic. Affected by this vulnerability is the function save of the component Article Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-216499.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

MCMS 5.2.9

References

https://gitee.com/mingSoft/MCMS/issues/I65KI5

https://vuldb.com/?id.216499

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 21, 2022
Vulnerability Reserved
Dec 21, 2022

JSON

Mingsoft