CVE-2025-55041

EPSS 0.02%
Veröffentlicht 18.03.2026 16:16:23
Zuletzt bearbeitet 20.03.2026 18:12:41
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

MuraCMS through 10.1.10 contains a CSRF vulnerability in the Add To Group functionality for user management (cUsers.cfc addToGroup method) that allows attackers to escalate privileges by adding any user to any group without proper authorization checks. The vulnerable function lacks CSRF token validation and directly processes user-supplied userId and groupId parameters via getUserManager().createUserInGorup(), enabling malicious websites to forge requests that automatically execute when an authenticated administrator visits a crafted page. Adding a user to the Super Admins group (s2 user) is not possible. Successful exploitation results in the attacker gaining privilege escalation both horizontally to other groups and vertically to the admin group. Escalation to the s2 User group is not possible.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Murasoftware ≫ Mura Cms Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.045

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	8	2.1	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

https://docs.murasoftware.com/v10/release-notes/#section-version-1014

Release Notes

https://www.murasoftware.com

Product

https://nvd.nist.gov/vuln/detail/CVE-2025-55041

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-55041

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-55041

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-55041