Vulnerability in N/a

CVE-2025-55041

MuraCMS through 10.1.10 contains a CSRF vulnerability in the Add To Group functionality for user management (cUsers.cfc addToGroup method) that allows attackers to escalate privileges by adding any user to any group without proper authoriz…

EPSS: 0.000 (7.0th percentile) — read the EPSS interpretation.

Affected products

  • N/a — versions n/a

References