Shodan
Vulnerabilities
Vulnerable Software
Maccms:  >> Maccms  >> 10.0  Security Vulnerabilities
CVE-2022-47872
A Server-Side Request Forgery (SSRF) in maccms10 v2021.1000.2000 allows attackers to force the application to make arbitrary requests via a crafted payload injected into the Name parameter under the Interface address module.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-02-01
CVE-2022-44870
A reflected cross-site scripting (XSS) vulnerability in maccms10 v2022.1000.3032 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter under the AD Management module.
CVSS Score
6.1
EPSS Score
0.002
Published
2023-01-06
CVE-2022-35148
maccms10 v2021.1000.1081 to v2022.1000.3031 was discovered to contain a SQL injection vulnerability via the table parameter at database/columns.html.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-08-17
CVE-2022-31303
maccms10 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Server Group text field.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-06-21
CVE-2021-43707
Cross Site Scripting (XSS) vulnerability exists in Maccms v10 via link_Name parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-31
CVE-2022-27884
Maccms v10 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in /admin.php/admin/plog/index.html via the wd parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-25
CVE-2022-27885
Maccms v10 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities in /admin.php/admin/website/data.html via the select and input parameters.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-25
CVE-2022-27886
Maccms v10 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in /admin.php/admin/ulog/index.html via the wd parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-25
CVE-2022-27887
Maccms v10 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in /admin.php/admin/vod/data.html via the repeat parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-25
CVE-2022-26573
Maccms v10 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities in /admin.php/admin/art/data.html via the select and input parameters.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-25


Products
Pricing
Contact Us

Shodan ® - All rights reserved