net.mingsoft:ms-mcms vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-2666Lownet.mingsoft:ms-mcms: mingSoft MCMS does not properly restrict file uploadsCVE-2025-60837Mediumnet.mingsoft:ms-mcms: MCMS reflected cross-site scripting (XSS) vulnerabilityCVE-2025-56316Criticalnet.mingsoft:ms-mcms: MCMS vulnerable SQL injection via the content_title parameterCVE-2025-29287Criticalnet.mingsoft:ms-mcms: MCMS allows arbitrary file uploads in the ueditor componentCVE-2024-22567Highnet.mingsoft:ms-mcms: mingSoft MCMS File Upload vulnerabilityCVE-2023-51282Highnet.mingsoft:ms-mcms: Code injection in mingSoft MCMSCVE-2023-50578Highnet.mingsoft:ms-mcms: Mingsoft MCMS SQL injectionCVE-2023-3990Lownet.mingsoft:ms-mcms: Cross-site Scripting in Mingsoft MCMSCVE-2020-22755Highnet.mingsoft:ms-mcms: MCMS vulnerable to arbitrary code execution via crafted thumbnailCVE-2020-20913Criticalnet.mingsoft:ms-mcms: Ming-Soft MCMS vulnerable to SQL injectionCVE-2022-47042Highnet.mingsoft:ms-mcms: Arbitrary file write in net.mingsoft:ms-mcmsCVE-2022-4640Mediumnet.mingsoft:ms-mcms: Mingsoft MCMS Cross-site Scripting vulnerabilityCVE-2022-4375Criticalnet.mingsoft:ms-mcms: Mingsoft MCMS vulnerable to SQL InjectionCVE-2022-4350Mediumnet.mingsoft:ms-mcms: Mingsoft MCMS vulnerable to Cross-site ScriptingCVE-2022-36599Criticalnet.mingsoft:ms-mcms: Mingsoft MCMS SQL injection vulnerability in /mdiy/model/delete URI via models ListCVE-2022-36272Criticalnet.mingsoft:ms-mcms: Mingsoft MCMS SQL injection vulnerability in /mdiy/page/verify URI via fieldName parameterCVE-2022-31943Criticalnet.mingsoft:ms-mcms: Unrestricted Upload of File with Dangerous Type in MCMSCVE-2022-30506Criticalnet.mingsoft:ms-mcms: Code injection in MCMSCVE-2022-29647Highnet.mingsoft:ms-mcms: Cross Site Request Forgery in Mingsoft MCMSCVE-2018-17366Highnet.mingsoft:ms-mcms: Mingsoft MCMS CSRF vulnerabilityCVE-2022-27340Highnet.mingsoft:ms-mcms: Cross Site Request Forgery in Mingsoft MCMSCVE-2022-26585Highnet.mingsoft:ms-mcms: SQL injection in net.mingsoft:ms-mcmsCVE-2021-46384Criticalnet.mingsoft:ms-mcms: Remote code execution in net.mingsoft:ms-mcmsCVE-2022-23899Criticalnet.mingsoft:ms-mcms: SQL injection in net.mingsoft:ms-mcmsCVE-2022-23898Criticalnet.mingsoft:ms-mcms: SQL injection in net.mingsoft:ms-mcms

Stop the waste.
Protect your environment with Kodem.