Vulnerability Details CVE-2017-15639
tasks/feed/readRSS.cfm in Mura CMS before 6.2 allows attackers to bypass intended access restrictions by leveraging the "draggable feeds" feature.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.066
EPSS Ranking 90.7%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
- http://www.getmura.com/blog/critical-security-update-for-mura-cms-version-6-1-and-earlier/
- http://www.securityfocus.com/bid/101603
- https://www.exploit-db.com/exploits/43045/
- http://www.getmura.com/blog/critical-security-update-for-mura-cms-version-6-1-and-earlier/
- http://www.securityfocus.com/bid/101603
- https://www.exploit-db.com/exploits/43045/