Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-10418

Malware in sbrugna...

9.8CVSS9.5AI score0.01452EPSS
Exploits1References2
OSV
OSV
added 2023/09/20 9:15 p.m.5 views

CVE-2023-42321

Cross Site Request Forgery CSRF vulnerability in icmsdev iCMSv.7.0.16 allows a remote attacker to execute arbitrary code via the user.admincp.php, members.admincp.php, and group.admincp.php files...

8.8CVSS6.1AI score0.00364EPSS
Exploits0References2
OSV
OSV
added 2020/09/10 2:15 p.m.3 views

CVE-2020-24739

A CSRF vulnerability was found in iCMS v7.0.0 in the background deletion administrator account. When missing the CSRFTOKEN and can still request normally, all administrators except the initial administrator will be deleted...

6.5CVSS6.5AI score0.00402EPSS
Exploits1References1
OSV
OSV
added 2018/06/15 7:29 p.m.4 views

CVE-2018-12498

spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id parameter in an app=spider&do=batch request to admincp.php...

9.8CVSS5.8AI score0.01452EPSS
Exploits1References1
OSV
OSV
added 2018/04/16 9:58 a.m.1 views

CVE-2018-10117

An issue was discovered in idreamsoft iCMS V7.0.7. There is a CSRF vulnerability that can add an admin account via admincp.php?app=members&do=save&frame=iPHP...

8.8CVSS5.8AI score
Exploits0References1
CNVD
CNVD
added 2018/03/08 12:0 a.m.1 views

SQL Injection Vulnerability in iCMS v7.0.7 apps.admincp.php Page

iCMS is a free, clean, efficient, and useful PHP content management system. iCMS v7.0.7 has a SQL injection vulnerability in the apps.admincp.php page. The vulnerability stems from the orderby parameter being brought into the database for execution without any processing. An attacker can exploit...

8.1AI score
Exploits0
Rows per page
Query Builder