CVE Alert & Security Feed

← Back to all CVEs

CVE-2025-67829

CRITICAL murasoftware NVD

CVSS Score 9.8

Severity CRITICAL

Published Mar 18, 2026

Vendor murasoftware

Description

Mura before 10.1.14 allows beanFeed.cfc getQuery sortDirection SQL injection.

References

https://docs.murasoftware.com/v10/release-notes/#section-version-1014