51 matches found
CVE-2018-16372
The issue was discovered in IdeaCMS through 2016-04-30. There is reflected XSS via the index.php?c=content&a=search kw parameter. NOTE: this product is discontinued...
CVE-2018-16372
IdeaCMS (PHP/MySQL) is affected by CVE-2018-16372 due to a reflected XSS in the search parameter kw of index.php?c=content&a=search, reported for versions up to 2016-04-30. The vulnerability allows injecting arbitrary script/HTML via the kw parameter and is linked to an input vector that is refle...
CVE-2018-16372
The issue was discovered in IdeaCMS through 2016-04-30. There is reflected XSS via the index.php?c=content&a=search kw parameter. NOTE: this product is discontinued...
Code Execution Vulnerability in ideacms v2.0.7
IdeaCMS website management system is by the three skin network technology limited company the original day side of the network based on the Asp + Access/Mssql environment to develop a rapid station-building system. Code execution vulnerability exists in ideacms v2.0.7. The vulnerability is due to...
IdeaCMS v2.0.7 suffers from information leakage vulnerability
IdeaCMS is based on Asp+Access/Mssql environment developed by the day side of the network technology limited company of rapid station-building system. IdeaCMS v2.0.7 exists information leakage vulnerability. An attacker can exploit the vulnerability to download database files and obtain sensitive...
Ideacms suffers from SQL injection vulnerability
IdeaCMS website management system is by the three skin network technology limited company the original day side of the network based on the Asp + Access/Mssql environment to develop a rapid station-building system. Ideacms has a SQL injection vulnerability. Attackers can use the vulnerability to...
IdeaCMS built Station system /inc/AjaxFun. asp? action=login cookie spoofing vulnerability
No description provided by source...
IdeaCMS logic login bug, pass to kill 0day-vulnerability warning-the black bar safety net
Baidu keywords: Powered By IdeaCMS ! A successful landing ! You can also login does not exist the user ! Landing wooyunsec the user to the user database does not exist, you can still continue the landing) !...
IdeaCMS built Station system universal vulnerability affects thousands of sites-vulnerability warning-the black bar safety net
IdeaCMS based on the ASP+MSSQL/ACCESS technology development from 2 0 0 8 released in the first version since, every year, we are on a program to do a larger version of the update, so far has released six major versions. IdeaCMS in a simple, efficient, flexible, easy to use, open source, template...
IdeaCMS v1.0 (fck) Remote Arbitrary File Upload
Securitylab.ir Application Info: Name: IdeaCMS Version: 1.0 Vulnerability Info: Type: Remote Arbitrary File Upload Risk: High Vulnerability: http://site.com/admin/fckeditor/editor/filemanager/connectors/asp/connector.asp Discoverd By: Pouya Daneshmand Website: http://securitylab.ir Contacts:...
IdeaCMS 0day +Exp2009-vulnerability warning-the black bar safety net
From: www.link0day.cn Tasteless upload vulnerability but the background get the shell made a contribution to upinc. asp: !-- include file="chkuser. asp" - %Server. ScriptTimeOut=5 0 0 0% style type="text/css" padding:0px; margin:0px; font-size:12px a color:6 6 6 6 6 6; a:hover color:0 0 0 0 0 0...