CVE-2023-26782: Code Injection
First published: Fri Apr 28 2023(Updated: )
An issue discovered in mccms 2.6.1 allows remote attackers to cause a denial of service via Backend management interface ->System Configuration->Cache Configuration->Cache security characters.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Chshcms Mccms | =2.6.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-26782.
What is the severity level of CVE-2023-26782?
The severity level of CVE-2023-26782 is medium.
What is the affected software version?
The affected software version is mccms 2.6.1.
How can remote attackers exploit this vulnerability?
Remote attackers can exploit this vulnerability by causing a denial of service via the Backend management interface.
Is there a fix available for CVE-2023-26782?
Currently, there is no fix available for CVE-2023-26782. It is recommended to follow the provided reference for any updates or patches.
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/type
- agent/event
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/chshcms
- canonical/chshcms mccms
- version/chshcms mccms/2.6.1