CVE-2025-55041

Name of the Vulnerable Software and Affected Versions MuraCMS versions through 10.1.10

Description The software contains a Cross-Site Request Forgery (CSRF) issue in the Add To Group functionality within user management, specifically in the cUsers.cfc addToGroup method. The issue stems from a lack of CSRF token validation, allowing attackers to escalate privileges by adding any user to any group without proper authorization. The vulnerable function directly processes the userId and groupId parameters through getUserManager().createUserInGorup(). Exploitation involves forging requests that automatically execute when an authenticated administrator visits a malicious page. While escalation to the Super Admins group is not possible, attackers can achieve horizontal privilege escalation to other groups and vertical escalation to the admin group.

Recommendations Versions prior to 10.1.10 should be updated.