Lucene search
K

7 matches found

NVD
NVD
added 2018/09/02 3:29 a.m.16 views

CVE-2018-16332

An issue was discovered in iCMS 7.0.9. There is an admincp.php?app=article&do=update CSRF vulnerability...

8.8CVSS8.7AI score0.00614EPSS
Exploits1References1
Prion
Prion
added 2018/09/02 3:29 a.m.15 views

Cross site request forgery (csrf)

An issue was discovered in iCMS 7.0.9. There is an admincp.php?app=article&do=update CSRF vulnerability...

6.8CVSS8.7AI score0.00614EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/09/02 3:0 a.m.16 views

CVE-2018-16332

An issue was discovered in iCMS 7.0.9. There is an admincp.php?app=article&do=update CSRF vulnerability...

8.8AI score0.00614EPSS
Exploits1References1
OSV
OSV
added 2018/07/10 8:29 p.m.3 views

CVE-2018-13865

An issue was discovered in idreamsoft iCMS 7.0.9. XSS exists via the callback parameter in a public/api.php uploadpic request, bypassing the iWAF protection mechanism...

6.1CVSS5.8AI score0.01032EPSS
Exploits1References1
NVD
NVD
added 2018/07/10 8:29 p.m.17 views

CVE-2018-13865

An issue was discovered in idreamsoft iCMS 7.0.9. XSS exists via the callback parameter in a public/api.php uploadpic request, bypassing the iWAF protection mechanism...

6.1CVSS6AI score0.01032EPSS
Exploits1References1
Prion
Prion
added 2018/07/10 8:29 p.m.12 views

Design/Logic Flaw

An issue was discovered in idreamsoft iCMS 7.0.9. XSS exists via the callback parameter in a public/api.php uploadpic request, bypassing the iWAF protection mechanism...

4.3CVSS5.9AI score0.01032EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/07/10 8:0 p.m.39 views

CVE-2018-13865

The CVE concerns idreamsoft iCMS 7.0.9. A cross-site scripting (XSS) flaw exists via the callback parameter in the public/api.php uploadpic endpoint, which bypasses the iWAF protection mechanism. This configuration allows arbitrary script execution in contexts relying on the affected API. No expl...

6.1CVSS5.9AI score0.01032EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder