CVE-2025-67830
Mura before 10.1.14 allows beanFeed.cfc getQuery sortby SQL injection.
We have discovered 984 live websites that are affected by CVE-2025-67830.
Affected Software
| Product |  Mura CMS |
| Category | Content Management System |
| Vulnerable Domains | 984 live websites (100% of Mura CMS install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 66 versions ( 97% of all versions) |
Details
- Published - Mar 18, 2026
- Updated - Mar 19, 2026
CVE References
Website Distribution by Country
Number of websites using CVE-2025-67830 United States | 569 websites |
 GB | 94 websites |
 Switzerland | 61 websites |
 Germany | 60 websites |
 Netherlands | 43 websites |
 Italy | 37 websites |
 France | 34 websites |
 Canada | 26 websites |
 Czech Republic | 20 websites |
 Sweden | 9 websites |
Website Distribution by TLD
Number of websites using CVE-2025-67830| .com | 373 websites |
| .org | 162 websites |
| .ch | 60 websites |
| .co.uk | 47 websites |
| .it | 37 websites |
| .edu | 26 websites |
| .net | 25 websites |
| .nl | 23 websites |
| .ca | 20 websites |
| .com.au | 20 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2025-67830
Top websites that are affected by CVE-2025-67830. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ****.com | United States | *,*** | |
| ***********.info | United States | **,*** | |
| ***.gov | United States | **,*** | |
| *******.org | United States | **,*** | |
| ***.***.wales | GB | **,*** | |
| ***.***.uk | United States | **,*** | |
| **********.com | United States | **,*** | |
| ****.org | Germany | **,*** | |
| **.**.gov | United States | **,*** | |
| *****.org | Germany | **,*** |