A vulnerability, which was classified as problematic, was found in Mingsoft MCMS 5.2.8. Affected is an unknown function of the file search.do. The manipulation of the argument content_title leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-215112.

Affected Packages

Maven net.mingsoft:ms-mcms

Affected versions: 0 (last affected: 5.2.8)

Related CVEs

CVE-2022-4350

Key Information

GHSA ID

GHSA-p46c-m4j7-mjvq

Published

December 8, 2022 12:30 PM

Last Modified

December 8, 2022 3:16 PM

CVSS Score

5.0 /10

Primary Ecosystem

Maven

Primary Package

net.mingsoft:ms-mcms

GitHub Reviewed

✓ Yes

Dataset

Last updated: August 2, 2025 6:46 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.