2026-03-27 14:13:36
VulDB
PUBLISHED
A weakness has been identified in mingSoft MCMS θΏ„ 5.5.0. This issue affects the function catchImage of the file net/mingsoft/cms/action/BaseAction.java of the component Editor Endpoint. Executing a manipulation of the argument catchimage can lead to server-side request forgery. It is possible to launch the attack remotely. The exploit has been made available to the public and could be used for attacks.