Murasoftware Mura Cms vulnerabilities
3 known vulnerabilities affecting murasoftware/mura_cms.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3
Vulnerabilities
Page 1 of 1
CVE-2022-47003P2CRITICALCVSS 9.8PoCfixed in 10.0.5802023-02-01
CVE-2022-47003 [CRITICAL] CWE-287 CVE-2022-47003: A vulnerability in the Remember Me function of Mura CMS before v10.0.580 allows attackers to bypass
A vulnerability in the Remember Me function of Mura CMS before v10.0.580 allows attackers to bypass authentication via a crafted web request.
nvd
CVE-2025-67830P3CRITICALCVSS 9.8fixed in 10.1.42026-03-18
CVE-2025-67830 [CRITICAL] CWE-89 CVE-2025-67830: Mura before 10.1.14 allows beanFeed.cfc getQuery sortby SQL injection.
Mura before 10.1.14 allows beanFeed.cfc getQuery sortby SQL injection.
nvd
CVE-2025-67829P3CRITICALCVSS 9.8fixed in 10.1.42026-03-18
CVE-2025-67829 [CRITICAL] CWE-89 CVE-2025-67829: Mura before 10.1.14 allows beanFeed.cfc getQuery sortDirection SQL injection.
Mura before 10.1.14 allows beanFeed.cfc getQuery sortDirection SQL injection.
nvd