CVE-2018-12498

spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id parameter in an app=spider=batch request to admincp.php...

CVE-2025-15394 iCMS POST Parameter ConfigAdmincp.php save code injection

A vulnerability was detected in iCMS up to 8.0.0. Affected is the function Save of the file app/config/ConfigAdmincp.php of the component POST Parameter Handler. The manipulation of the argument config results in code injection. The attack can be launched remotely. The exploit is now public and m...

EUVD-2019-7913

Malware in sbrugna...

EUVD-2020-11431

Malware in sbrugna...

EUVD-2005-4391

Malware in sbrugna...

EUVD-2019-16781

Malware in sbrugna...

EUVD-2020-13918

Malware in sbrugna...

EUVD-2021-31776

Malicious code in bioql PyPI...

EUVD-2021-31775

Malicious code in bioql PyPI...

CVE-2023-42322

Insecure Permissions vulnerability in icmsdev iCMS v.7.0.16 allows a remote attacker to obtain sensitive information...

CVE-2021-44978

iCMS = 8.0.0 allows users to add and render a comtom template, which has a SSTI vulnerability which causes remote code execution...

CVE-2021-44977

In iCMS =8.0.0, a directory traversal vulnerability allows an attacker to read arbitrary files...

CVE-2019-17552

An issue was discovered in idreamsoft iCMS v7.0.14. There is a spiderproject.admincp.php SQL injection vulnerability in the 'upload spider project scheme' feature via a two-dimensional payload...

CVE-2019-17583

idreamsoft iCMS 7.0.15 allows remote attackers to cause a denial of service resource consumption via a query for many comments, as demonstrated by the admincp.php?app=comment= substring followed by a large positive integer...

CVE-2023-42322

Insecure Permissions vulnerability in icmsdev iCMS v.7.0.16 allows a remote attacker to obtain sensitive information...

iCMS2 跨站脚本漏洞

iCMS is a software application. An efficient and simple content management system built with PHP and MySQL. A cross-site scripting vulnerability exists in iCMS2 versions prior to 2.16.1-git, which is rooted in vulnerability to stored cross-site scripting XSS attacks...

iCMS 安全漏洞

iCMS is a software application. An efficient and simple content management system built with PHP and MySQL. A security vulnerability exists in iCMS versions prior to 2.16.1, which arises from a sensitive cookie in an HTTPS session that does not have a security attribute...

CVE-2022-41496

iCMS v7.0.16 was discovered to contain a Server-Side Request Forgery SSRF via the url parameter at admincp.php...

iCMS 代码问题漏洞

iCMS is a software application. An efficient and simple content management system built with PHP and MySQL. A security vulnerability exists in iCMS version v7.0.16, which originates from a server-side request forgery SSRF contained in the url parameter via admincp.php...

CVE-2021-44977

In iCMS =8.0.0, a directory traversal vulnerability allows an attacker to read arbitrary files...