Headline
CVE-2021-42183: GitHub - MasaCMS/MasaCMS: MASA CMS is an Enterprise Content Management platform based on open source technology.
MasaCMS 7.2.1 is affected by a path traversal vulnerability in /index.cfm/_api/asset/image/.
Masa CMS is a digital experience platform, created by blueriver as Mura CMS, forked by We Are Orange. Masa CMS was designed to build ambitious web, multi-channel, business-to-business and business-to-employee applications, and create Flow in the digital experience for Content Managers, Content Contributors, Marketers and Developers.
Masa CMS is an open source content management system for CFML, based on the latest open source version of Mura CMS created by blueriver, and forked by We Are Orange to create Masa CMS. Masa CMS has been designed to be used by marketing departments, web designers and developers.
Masa CMS Resources
- http://www.masacms.com
- https://cfml.slack.com
- https://github.com/MasaCMS/MasaCMS/tree/main
Related news
A pre-authenticated remote code execution vulnerability has been disclosed in dotCMS, an open-source content management system written in Java and "used by over 10,000 clients in over 70 countries around the globe, from Fortune 500 brands and mid-sized businesses." The critical flaw, tracked as CVE-2022-26352, stems from a directory traversal attack when performing file uploads, enabling an