← Back

Mara Cms Project

mara_cms_project

3 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Mara Cms
mara_cms
3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-36547
1Mara Cms Project
1Mara Cms
Jun 17, 2026
Oct 28, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A remote code execution (RCE) vulnerability in the component /codebase/dir.php?type=filenew of Mara v7.5 allows attackers to execute arbitrary commands via a crafted PHP file.
CVE-2020-25422
1Mara Cms Project
1Mara Cms
Jun 17, 2026
Oct 28, 2021
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
A cross site scripting (XSS) vulnerability in menuedit.php of Mara CMS 7.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
CVE-2020-24223
1Mara Cms Project
1Mara Cms
Jun 17, 2026
Aug 30, 2020
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Mara CMS 7.5 allows cross-site scripting (XSS) in contact.php via the theme or pagetheme parameters.