melisplatform/melis-cms

Packagist2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting melisplatform/melis-cmspage 1 of 1

CVE-2022-39297HIGHCVSS 7.7EG 7.7✓ Fixed in 5.0.1
2022-10-12
vulnerable: v2.1 ... v5.0.0 (64 versions)
MelisCms provides a full CMS for Melis Platform, including templating system, drag'n'drop of plugins, SEO and many administration tools. Attackers can deserialize arbitrary data on affected versions of `melisplatform/melis-cms`, and ultima…
CVE-2025-10351CRITICALCVSS 9.3EG 0.0✓ Fixed in 5.3.4
2025-10-08
vulnerable: v2.1 ... v5.3.3 (74 versions)
SQL injection vulnerability based on the melis-cms module of the Melis platform from Melis Technology. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'idPage' parameter in the '/melis/Me…

Check whether melisplatform/melis-cms is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for melisplatform/melis-cms CVEs against the assets you own.

Start Free Scan →