CVE-2025-55041 | MuraCMS up to 10.1.10 User Management cUsers.cfc getUserManager groupId cross-site request forgery

Inserito da Angelo Barbosa | Mar 18, 2026 | CVE

A vulnerability marked as problematic has been reported in MuraCMS up to 10.1.10. This affects the function getUserManager of the file cUsers.cfc of the component User Management Handler. The manipulation of the argument groupId leads to cross-site request forgery.

This vulnerability is documented as CVE-2025-55041. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-55041 | MuraCMS up to 10.1.10 User Management cUsers.cfc getUserManager groupId cross-site request forgery

Post correlati

CVE-2024-56973 | Alvaria Unified IP Unified Director up to 7.2SP1 ProcessUploadFromURL.jsp filename permission

CVE-2024-5152 | ElementsReady Addons for Elementor Plugin up to 6.1.0 on WordPress cross site scripting

CVE-2025-9151 | LiuYuYang01 ThriveX-Blog up to 3.1.7 web updateJsonValueByName improper authorization

CVE-2023-45722 | HCL DRYiCE MyXalytics 5.9/6.0/6.1 pathname traversal (KB0109608)