CVE-2017-15639
MEDIUMMura CMS < 6.1 - XML External Entity Injection via RSS Feed Parser
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2017-15639. PoCs published by Anthony Cole.
AI-analyzed exploit summary This exploit demonstrates an SSRF and XXE vulnerability in Mura CMS before version 6.2. It allows an attacker to force the server to make arbitrary HTTP requests and read local files via an XXE payload.
Description
tasks/feed/readRSS.cfm in Mura CMS before 6.2 allows attackers to bypass intended access restrictions by leveraging the "draggable feeds" feature.
Exploits (1)
exploitdb
WORKING POC
by Anthony Cole · textwebappscfm
https://www.exploit-db.com/exploits/43045
This exploit demonstrates an SSRF and XXE vulnerability in Mura CMS before version 6.2. It allows an attacker to force the server to make arbitrary HTTP requests and read local files via an XXE payload.
Classification
Working Poc 95%
Attack Type
Ssrf | Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
Mura CMS before 6.2
No auth needed
Prerequisites:
Access to the target Mura CMS instance · Ability to host a malicious XML file on an external server
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (3)
Core 3
Core References
Exploit, Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/43045/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/101603
Vendor Advisory x_refsource_confirm
http://www.getmura.com/blog/critical-security-update-for-mura-cms-version-6-1-and-earlier/
Scores
CVSS v3
6.5
EPSS
0.0678
EPSS Percentile
93.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-611
Status
published
Products (1)
getmura/mura_cms
< 6.1
Published
Oct 19, 2017
Tracked Since
Feb 18, 2026