Lucene search
K

197 matches found

OSV
OSV
added 2023/12/13 3:15 p.m.4 views

CVE-2023-6759

A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. This affects an unknown part of the file /WebResource/resource of the component Love Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely...

7.5CVSS4.9AI score0.00969EPSS
Exploits1References3
NVD
NVD
added 2023/12/13 3:15 p.m.19 views

CVE-2023-6759

A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. This affects an unknown part of the file /WebResource/resource of the component Love Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely...

7.5CVSS0.00969EPSS
Exploits1References3
Prion
Prion
added 2023/12/13 3:15 p.m.20 views

Design/Logic Flaw

A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. This affects an unknown part of the file /WebResource/resource of the component Love Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely...

5CVSS7.1AI score0.00969EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/12/13 3:0 p.m.31 views

CVE-2023-6759 Thecosy IceCMS Love resource improper enforcement of a single, unique action

A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. This affects an unknown part of the file /WebResource/resource of the component Love Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely...

5.3CVSS7.8AI score0.00969EPSS
Exploits1References3
CVE
CVE
added 2023/12/13 3:0 p.m.32 views

CVE-2023-6759

The CVE-2023-6759 entry concerns Thecosy IceCMS 2.0.1, specifically the Love Handler component’s /WebResource/resource path. The vulnerability is described as a manipulation that leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely, and the expl...

7.5CVSS6.1AI score0.00969EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/13 3:0 p.m.11 views

CVE-2023-6759 Thecosy IceCMS Love resource improper enforcement of a single, unique action

A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. This affects an unknown part of the file /WebResource/resource of the component Love Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely...

5.3CVSS7.1AI score0.00969EPSS
Exploits1References3
CVE
CVE
added 2023/12/13 2:31 p.m.38 views

CVE-2023-6758

The CVE-2023-6758 entry affects Thecosy IceCMS 2.0.1, specifically the API endpoint /adplanet/PlanetCommentList. The issue is an improper access control in an unknown functionality of that API component, with remote exploitation possible and public disclosure of the exploit. Multiple sources corr...

5.3CVSS4.8AI score0.00738EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/12/13 2:31 p.m.32 views

CVE-2023-6758 Thecosy IceCMS API PlanetCommentList access control

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /adplanet/PlanetCommentList of the component API. The manipulation leads to improper access controls. The attack may be launched remotely. The exploit...

5.3CVSS5.7AI score0.00738EPSS
Exploits1References3
OSV
OSV
added 2023/12/13 2:15 p.m.3 views

CVE-2023-6757

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The...

6.5CVSS4.7AI score0.00983EPSS
Exploits1References3
NVD
NVD
added 2023/12/13 2:15 p.m.24 views

CVE-2023-6757

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The...

6.5CVSS0.00983EPSS
Exploits1References3
OSV
OSV
added 2023/12/13 2:15 p.m.4 views

CVE-2023-6756

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been classified as problematic. Affected is an unknown function of the file /login of the component Captcha Handler. The manipulation leads to improper restriction of excessive authentication attempts. It is possible to launch the attack...

9.8CVSS4.7AI score0.01288EPSS
Exploits1References3
NVD
NVD
added 2023/12/13 2:15 p.m.17 views

CVE-2023-6756

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been classified as problematic. Affected is an unknown function of the file /login of the component Captcha Handler. The manipulation leads to improper restriction of excessive authentication attempts. It is possible to launch the attack...

9.8CVSS0.01288EPSS
Exploits1References3
Prion
Prion
added 2023/12/13 2:15 p.m.19 views

Information disclosure

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The...

5CVSS6.8AI score0.00983EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2023/12/13 2:15 p.m.17 views

Design/Logic Flaw

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been classified as problematic. Affected is an unknown function of the file /login of the component Captcha Handler. The manipulation leads to improper restriction of excessive authentication attempts. It is possible to launch the attack...

5CVSS7.4AI score0.01288EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/12/13 2:0 p.m.36 views

CVE-2023-6757 Thecosy IceCMS API PlanetUser information disclosure

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The...

5.3CVSS6.6AI score0.00983EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/12/13 2:0 p.m.6 views

CVE-2023-6757 Thecosy IceCMS API PlanetUser information disclosure

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The...

5.3CVSS6.4AI score0.00983EPSS
Exploits1References3
CVE
CVE
added 2023/12/13 2:0 p.m.36 views

CVE-2023-6757

Thecosy IceCMS 2.0.1 exposes information via the API endpoint /adplanet/PlanetUser. The issue arises in an unknown API functionality, allowing remote access and information disclosure. Publicly disclosed exploits suggest potential attacker access without authentication, with confidentiality impac...

6.5CVSS5.7AI score0.00983EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/12/13 1:31 p.m.33 views

CVE-2023-6756

The CVE-2023-6756 issue affects Thecosy IceCMS 2.0.1, specifically the Captcha Handler on the /login endpoint. The vulnerability allows attackers to bypass or excessive-restrict authentication attempts, with remote exploitation and public Exploit disclosure. Multiple connected sources confirm the...

9.8CVSS7.7AI score0.01288EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/13 12:0 a.m.4 views

PT-2023-32759 · Thecosy · Thecosy Icecms

Name of the Vulnerable Software and Affected Versions: Thecosy IceCMS version 2.0.1 Description: A vulnerability was found in the Captcha Handler component of the /login file, leading to improper restriction of excessive authentication attempts. This issue can be exploited remotely...

9.8CVSS7.2AI score0.01288EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2023/12/13 12:0 a.m.5 views

PT-2023-32765 · Thecosy · Thecosy Icecms

Name of the Vulnerable Software and Affected Versions: Thecosy IceCMS version 2.0.1 Description: A critical vulnerability was found in Thecosy IceCMS, affecting an unknown function of the file /article/DelectArticleById/ of the component Article Handler. This issue leads to permission problems an...

5.5CVSS5.8AI score0.00695EPSS
Exploits1References8
Rows per page
Query Builder