Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-k32h-zep8-sfer

Summary

Unrestricted Upload of File with Dangerous Type
MCMS v5.2.4 was discovered to have an arbitrary file upload vulnerability in the New Template module, which allows attackers to execute arbitrary code via a crafted ZIP file.

Aliases

alias	CVE-2022-22929

alias	GHSA-77hh-p7r6-66pv

Fixed_packages

url pkg:maven/net.mingsoft/ms-mcms@5.2.5

purl pkg:maven/net.mingsoft/ms-mcms@5.2.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.2.5

Affected_packages

url pkg:maven/net.mingsoft/ms-mcms@4.6.3-SNAPSHOTS

purl pkg:maven/net.mingsoft/ms-mcms@4.6.3-SNAPSHOTS

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h35-stmu-9fap

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-3h5d-mxs4-7fdc

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-5hpy-f6jz-kkhn

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-akyw-fa8r-5qak

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-teag-r6f3-1qcs

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-yvy4-nugm-cubs

vulnerability	VCID-yybx-z4ts-eqbj

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@4.6.3-SNAPSHOTS

url pkg:maven/net.mingsoft/ms-mcms@4.6.5

purl pkg:maven/net.mingsoft/ms-mcms@4.6.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h35-stmu-9fap

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-3h5d-mxs4-7fdc

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-5hpy-f6jz-kkhn

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-akyw-fa8r-5qak

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-teag-r6f3-1qcs

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-yvy4-nugm-cubs

vulnerability	VCID-yybx-z4ts-eqbj

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@4.6.5

url pkg:maven/net.mingsoft/ms-mcms@4.7.1

purl pkg:maven/net.mingsoft/ms-mcms@4.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h35-stmu-9fap

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-5hpy-f6jz-kkhn

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-teag-r6f3-1qcs

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-yybx-z4ts-eqbj

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@4.7.1

url pkg:maven/net.mingsoft/ms-mcms@4.7.2

purl pkg:maven/net.mingsoft/ms-mcms@4.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h35-stmu-9fap

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-5hpy-f6jz-kkhn

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-teag-r6f3-1qcs

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-yybx-z4ts-eqbj

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@4.7.2

url pkg:maven/net.mingsoft/ms-mcms@5.0.0

purl pkg:maven/net.mingsoft/ms-mcms@5.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h35-stmu-9fap

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-5hpy-f6jz-kkhn

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-teag-r6f3-1qcs

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-yybx-z4ts-eqbj

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.0.0

url pkg:maven/net.mingsoft/ms-mcms@5.0.1

purl pkg:maven/net.mingsoft/ms-mcms@5.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h35-stmu-9fap

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-5hpy-f6jz-kkhn

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-teag-r6f3-1qcs

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.0.1

url pkg:maven/net.mingsoft/ms-mcms@5.1

purl pkg:maven/net.mingsoft/ms-mcms@5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h35-stmu-9fap

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.1

url pkg:maven/net.mingsoft/ms-mcms@5.2

purl pkg:maven/net.mingsoft/ms-mcms@5.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.2

url pkg:maven/net.mingsoft/ms-mcms@5.2.0

purl pkg:maven/net.mingsoft/ms-mcms@5.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.2.0

url pkg:maven/net.mingsoft/ms-mcms@5.2.0.RELEASE

purl pkg:maven/net.mingsoft/ms-mcms@5.2.0.RELEASE

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.2.0.RELEASE

url pkg:maven/net.mingsoft/ms-mcms@5.2.1

purl pkg:maven/net.mingsoft/ms-mcms@5.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.2.1

url pkg:maven/net.mingsoft/ms-mcms@5.2.2

purl pkg:maven/net.mingsoft/ms-mcms@5.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.2.2

url pkg:maven/net.mingsoft/ms-mcms@5.2.3

purl pkg:maven/net.mingsoft/ms-mcms@5.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.2.3

url pkg:maven/net.mingsoft/ms-mcms@5.2.4

purl pkg:maven/net.mingsoft/ms-mcms@5.2.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2kj2-du23-vfbd

vulnerability	VCID-5d5m-8jty-kyax

vulnerability	VCID-6g4g-y3r4-ukd5

vulnerability	VCID-8k4e-zzzs-gfhr

vulnerability	VCID-8urg-pbqe-3qam

vulnerability	VCID-8yey-p2ne-6qd9

vulnerability	VCID-9613-jcy1-hbbf

vulnerability	VCID-ab42-p96n-3qdu

vulnerability	VCID-b9yj-4spm-37av

vulnerability	VCID-bc79-2sau-fqa8

vulnerability	VCID-cwz4-xchw-7bdt

vulnerability	VCID-d16t-bed4-yfde

vulnerability	VCID-d4nr-adct-cqh8

vulnerability	VCID-e9z3-2144-27d6

vulnerability	VCID-h1x7-9bx1-g7g1

vulnerability	VCID-h59x-5n14-4fg3

vulnerability	VCID-hpv5-h7mu-nug1

vulnerability	VCID-js75-4xnd-9ua6

vulnerability	VCID-k32h-zep8-sfer

vulnerability	VCID-mzkf-x1bf-pyas

vulnerability	VCID-ptzy-p1nj-s7e5

vulnerability	VCID-q4p6-42gn-7qfs

vulnerability	VCID-q9u8-mzhg-puaz

vulnerability	VCID-qjnt-83k8-pug8

vulnerability	VCID-rsuz-et5e-r7be

vulnerability	VCID-ry5p-tv3b-6qgu

vulnerability	VCID-sak6-rce7-q7gn

vulnerability	VCID-wpfx-18wp-hybm

vulnerability	VCID-zkqd-a9ef-g3dm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/net.mingsoft/ms-mcms@5.2.4

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-22929

reference_id

reference_type

scores

value	0.02652
scoring_system	epss
scoring_elements	0.8602
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-22929

reference_url

https://web.archive.org/web/20230521040336/https://gitee.com/mingSoft/MCMS/issues/I4Q4NV

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20230521040336/https://gitee.com/mingSoft/MCMS/issues/I4Q4NV

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-22929

reference_id

CVE-2022-22929

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-22929

reference_url

https://github.com/advisories/GHSA-77hh-p7r6-66pv

reference_id

GHSA-77hh-p7r6-66pv

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-77hh-p7r6-66pv

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	434
name	Unrestricted Upload of File with Dangerous Type
description	The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment.

cwe_id	78
name	Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
description	The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

Severity_range_score 9.0 - 10.0

Exploitability 0.5

Weighted_severity 9.0

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k32h-zep8-sfer

Vulnerability Instance