Vulnerability in N/a

CVE-2025-55040

The import form CSRF vulnerability in MuraCMS through 10.1.10 allows attackers to upload and install malicious form definitions through a CSRF attack. The vulnerable cForm.importform function lacks CSRF token validation, enabling malicious…

EPSS: 0.000 (0.8th percentile) — read the EPSS interpretation.

Affected products

  • N/a — versions n/a

References