CVE-2022-47002

Source
https://cve.org/CVERecord?id=CVE-2022-47002
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-47002.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-47002
Published
2023-02-01T00:00:00Z
Modified
2026-07-08T06:04:20.024835471Z
Summary
[none]
Details

A vulnerability in the Remember Me function of Masa CMS v7.2, 7.3, and 7.4-beta allows attackers to bypass authentication via a crafted web request.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/47xxx/CVE-2022-47002.json",
    "cna_assigner": "mitre"
}
References

Affected packages

Git / github.com/masacms/masacms

Affected ranges

Type
GIT
Repo
https://github.com/masacms/masacms
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Introduced
Fixed
Database specific
{
    "cpe": "cpe:2.3:a:masacms:masacms:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "7.2.5"
        },
        {
            "introduced": "7.3"
        },
        {
            "fixed": "7.3.10"
        }
    ],
    "source": [
        "CPE_RANGE",
        "REFERENCES"
    ]
}

Affected versions

5.*
5.5
6.*
6.2.6161
6.2.6527
7.*
7.0.6919
7.0.6930
7.0.6967
7.1.107
7.1.110
7.1.111
7.1.117
7.1.123
7.1.124
7.1.131
7.1.142
7.1.161
7.1.163
7.1.164
7.1.177
7.1.178
7.1.189
7.1.190
7.1.204
7.1.241
7.1.250
7.1.257
7.1.264
7.1.280
7.1.281
7.1.310
7.1.322
7.1.323
7.1.333
7.1.341
7.1.343
7.1.344
7.1.348
7.1.353
7.1.363
7.1.383
7.1.389
7.1.393
7.1.408
7.1.415
7.1.426
7.1.427
7.1.428
7.1.431
7.1.432
7.1.433
7.1.435
7.1.457
7.1.464
7.1.472
7.1.496
7.1.75
7.1.79
7.1.83
7.1.84
7.1.85
7.1.89
7.1.92
7.1.96
7.2.0
7.2.2
7.2.3
7.2.4
7.3
7.3.1
7.3.2
7.3.3
7.3.4
7.3.5
7.3.6
7.3.7
7.3.8
7.3.9

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-47002.json"