197 matches found
CVE-2023-6759
A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. This affects an unknown part of the file /WebResource/resource of the component Love Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely...
CVE-2023-6759
A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. This affects an unknown part of the file /WebResource/resource of the component Love Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely...
Design/Logic Flaw
A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. This affects an unknown part of the file /WebResource/resource of the component Love Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely...
CVE-2023-6759 Thecosy IceCMS Love resource improper enforcement of a single, unique action
A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. This affects an unknown part of the file /WebResource/resource of the component Love Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely...
CVE-2023-6759
The CVE-2023-6759 entry concerns Thecosy IceCMS 2.0.1, specifically the Love Handler component’s /WebResource/resource path. The vulnerability is described as a manipulation that leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely, and the expl...
CVE-2023-6759 Thecosy IceCMS Love resource improper enforcement of a single, unique action
A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. This affects an unknown part of the file /WebResource/resource of the component Love Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to initiate the attack remotely...
CVE-2023-6758
The CVE-2023-6758 entry affects Thecosy IceCMS 2.0.1, specifically the API endpoint /adplanet/PlanetCommentList. The issue is an improper access control in an unknown functionality of that API component, with remote exploitation possible and public disclosure of the exploit. Multiple sources corr...
CVE-2023-6758 Thecosy IceCMS API PlanetCommentList access control
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /adplanet/PlanetCommentList of the component API. The manipulation leads to improper access controls. The attack may be launched remotely. The exploit...
CVE-2023-6757
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The...
CVE-2023-6757
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The...
CVE-2023-6756
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been classified as problematic. Affected is an unknown function of the file /login of the component Captcha Handler. The manipulation leads to improper restriction of excessive authentication attempts. It is possible to launch the attack...
CVE-2023-6756
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been classified as problematic. Affected is an unknown function of the file /login of the component Captcha Handler. The manipulation leads to improper restriction of excessive authentication attempts. It is possible to launch the attack...
Information disclosure
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The...
Design/Logic Flaw
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been classified as problematic. Affected is an unknown function of the file /login of the component Captcha Handler. The manipulation leads to improper restriction of excessive authentication attempts. It is possible to launch the attack...
CVE-2023-6757 Thecosy IceCMS API PlanetUser information disclosure
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The...
CVE-2023-6757 Thecosy IceCMS API PlanetUser information disclosure
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The...
CVE-2023-6757
Thecosy IceCMS 2.0.1 exposes information via the API endpoint /adplanet/PlanetUser. The issue arises in an unknown API functionality, allowing remote access and information disclosure. Publicly disclosed exploits suggest potential attacker access without authentication, with confidentiality impac...
CVE-2023-6756
The CVE-2023-6756 issue affects Thecosy IceCMS 2.0.1, specifically the Captcha Handler on the /login endpoint. The vulnerability allows attackers to bypass or excessive-restrict authentication attempts, with remote exploitation and public Exploit disclosure. Multiple connected sources confirm the...
PT-2023-32759 · Thecosy · Thecosy Icecms
Name of the Vulnerable Software and Affected Versions: Thecosy IceCMS version 2.0.1 Description: A vulnerability was found in the Captcha Handler component of the /login file, leading to improper restriction of excessive authentication attempts. This issue can be exploited remotely...
PT-2023-32765 · Thecosy · Thecosy Icecms
Name of the Vulnerable Software and Affected Versions: Thecosy IceCMS version 2.0.1 Description: A critical vulnerability was found in Thecosy IceCMS, affecting an unknown function of the file /article/DelectArticleById/ of the component Article Handler. This issue leads to permission problems an...