CVE-2025-60837

A reflected cross-site scripting (XSS) vulnerability in MCMS v6.0.1 allows attackers to execute arbitrary Javascript in the context of a user's browser via a crafted payload.

Published Oct 24, 2025

https://gist.github.com/xuzhiwei66666666/5cec37c9f674a08bc0d8654d42b4137a https://github.com/advisories/GHSA-wvv5-5g6x-hp7j

CVSS ScoreMedium

6.1

Ecosystem	Package	Version

Ecosystem	Package	Version

Vulnerabilities

CVE-2025-60837

A reflected cross-site scripting (XSS) vulnerability in MCMS v6.0.1 allows attackers to execute arbitrary Javascript in the context of a user's browser via a crafted payload.

Published Oct 24, 2025

https://gist.github.com/xuzhiwei66666666/5cec37c9f674a08bc0d8654d42b4137a https://github.com/advisories/GHSA-wvv5-5g6x-hp7j

CVSS ScoreMedium

6.1


maven	net.mingsoft/ms-mcms	4.6.3-SNAPSHOTS
maven	net.mingsoft/ms-mcms	4.6.5
maven	net.mingsoft/ms-mcms	4.7.1
maven	net.mingsoft/ms-mcms	4.7.2
maven	net.mingsoft/ms-mcms	5.0.0
maven	net.mingsoft/ms-mcms	5.0.1
maven	net.mingsoft/ms-mcms	5.1
maven	net.mingsoft/ms-mcms	5.2.0.RELEASE
maven	net.mingsoft/ms-mcms	5.2.0
maven	net.mingsoft/ms-mcms	5.2.10
maven	net.mingsoft/ms-mcms	5.2.11
maven	net.mingsoft/ms-mcms	5.2.1
maven	net.mingsoft/ms-mcms	5.2.2
maven	net.mingsoft/ms-mcms	5.2.3
maven	net.mingsoft/ms-mcms	5.2.4
maven	net.mingsoft/ms-mcms	5.2.5
maven	net.mingsoft/ms-mcms	5.2.6
maven	net.mingsoft/ms-mcms	5.2.7
maven	net.mingsoft/ms-mcms	5.2.8
maven	net.mingsoft/ms-mcms	5.2.9
maven	net.mingsoft/ms-mcms	5.2
maven	net.mingsoft/ms-mcms	5.3.0
maven	net.mingsoft/ms-mcms	5.3.1
maven	net.mingsoft/ms-mcms	5.3.2
maven	net.mingsoft/ms-mcms	5.3.3
maven	net.mingsoft/ms-mcms	5.3.4
maven	net.mingsoft/ms-mcms	5.3.5
maven	net.mingsoft/ms-mcms	5.3.6
maven	net.mingsoft/ms-mcms	5.4.0
maven	net.mingsoft/ms-mcms	5.4.1
maven	net.mingsoft/ms-mcms	5.4.2
maven	net.mingsoft/ms-mcms	5.4.3
maven	net.mingsoft/ms-mcms	5.4.4
maven	net.mingsoft/ms-mcms	5.4.5
maven	net.mingsoft/ms-mcms	5.5.0
maven	net.mingsoft/ms-mcms	6.0.0
maven	net.mingsoft/ms-mcms	6.0.1

Ecosystem	Package	Version


maven	net.mingsoft/ms-mcms	4.6.3-SNAPSHOTS
maven	net.mingsoft/ms-mcms	4.6.5
maven	net.mingsoft/ms-mcms	4.7.1
maven	net.mingsoft/ms-mcms	4.7.2
maven	net.mingsoft/ms-mcms	5.0.0
maven	net.mingsoft/ms-mcms	5.0.1
maven	net.mingsoft/ms-mcms	5.1
maven	net.mingsoft/ms-mcms	5.2.0.RELEASE
maven	net.mingsoft/ms-mcms	5.2.0
maven	net.mingsoft/ms-mcms	5.2.10
maven	net.mingsoft/ms-mcms	5.2.11
maven	net.mingsoft/ms-mcms	5.2.1
maven	net.mingsoft/ms-mcms	5.2.2
maven	net.mingsoft/ms-mcms	5.2.3
maven	net.mingsoft/ms-mcms	5.2.4
maven	net.mingsoft/ms-mcms	5.2.5
maven	net.mingsoft/ms-mcms	5.2.6
maven	net.mingsoft/ms-mcms	5.2.7
maven	net.mingsoft/ms-mcms	5.2.8
maven	net.mingsoft/ms-mcms	5.2.9
maven	net.mingsoft/ms-mcms	5.2
maven	net.mingsoft/ms-mcms	5.3.0
maven	net.mingsoft/ms-mcms	5.3.1
maven	net.mingsoft/ms-mcms	5.3.2
maven	net.mingsoft/ms-mcms	5.3.3
maven	net.mingsoft/ms-mcms	5.3.4
maven	net.mingsoft/ms-mcms	5.3.5
maven	net.mingsoft/ms-mcms	5.3.6
maven	net.mingsoft/ms-mcms	5.4.0
maven	net.mingsoft/ms-mcms	5.4.1
maven	net.mingsoft/ms-mcms	5.4.2
maven	net.mingsoft/ms-mcms	5.4.3
maven	net.mingsoft/ms-mcms	5.4.4
maven	net.mingsoft/ms-mcms	5.4.5
maven	net.mingsoft/ms-mcms	5.5.0
maven	net.mingsoft/ms-mcms	6.0.0
maven	net.mingsoft/ms-mcms	6.0.1

Find vulnerabilities. Fix fast with AI.

CVE-2025-60837

CVE-2025-60837