Mara Cms Project CVE

Filtered by vendor Mara Cms Project Subscriptions

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2020-25422	1 Mara Cms Project	1 Mara Cms	2024-08-04	5.4 Medium
A cross site scripting (XSS) vulnerability in menuedit.php of Mara CMS 7.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
CVE-2020-24223	1 Mara Cms Project	1 Mara Cms	2024-08-04	6.1 Medium
Mara CMS 7.5 allows cross-site scripting (XSS) in contact.php via the theme or pagetheme parameters.
CVE-2021-36547	1 Mara Cms Project	1 Mara Cms	2024-08-04	9.8 Critical
A remote code execution (RCE) vulnerability in the component /codebase/dir.php?type=filenew of Mara v7.5 allows attackers to execute arbitrary commands via a crafted PHP file.

Page 1 of 1.