Search for packages
| purl | pkg:maven/net.mingsoft/ms-mcms@5.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-fbm3-j9t1-3ucd
Aliases: CVE-2021-44868 GHSA-2pmw-cvc7-frvh |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') A problem was found in ming-soft MCMS v5.1. There is a sql injection vulnerability in /ms/cms/content/list.do | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-6xyw-cb25-97cx | Ming-Soft MCMS vulnerable to SQL injection SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via `basic_title` parameter. This issue is resolved in v5.1. |
CVE-2020-20913
GHSA-hx8p-9m48-g76r |
| VCID-msnc-qea4-uqbn | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') An issue was discovered in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do. |
CVE-2020-23262
GHSA-h3hw-g4hm-7gr4 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-02T04:44:26.695514+00:00 | GitLab Importer | Fixing | VCID-6xyw-cb25-97cx | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/net.mingsoft/ms-mcms/CVE-2020-20913.yml | 38.6.0 |
| 2026-06-02T04:41:38.653242+00:00 | GitLab Importer | Affected by | VCID-fbm3-j9t1-3ucd | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/net.mingsoft/ms-mcms/CVE-2021-44868.yml | 38.6.0 |
| 2026-06-02T04:41:21.656007+00:00 | GitLab Importer | Fixing | VCID-msnc-qea4-uqbn | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/net.mingsoft/ms-mcms/CVE-2020-23262.yml | 38.6.0 |