Lucene search
K

133 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-8212

Malware in sbrugna...

8.8CVSS8.8AI score0.00614EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-5799

Malware in sbrugna...

6.1CVSS6.3AI score0.01032EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:2 a.m.6 views

CVE-2019-17552

An issue was discovered in idreamsoft iCMS v7.0.14. There is a spiderproject.admincp.php SQL injection vulnerability in the 'upload spider project scheme' feature via a two-dimensional payload...

9.8CVSS8AI score0.01095EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:33 a.m.6 views

CVE-2018-13865

An issue was discovered in idreamsoft iCMS 7.0.9. XSS exists via the callback parameter in a public/api.php uploadpic request, bypassing the iWAF protection mechanism...

6.1CVSS6.1AI score0.01032EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/08/05 12:0 a.m.3 views

idreamsoft iCMS SQL Injection Vulnerability

idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A SQL injection vulnerability exists in idreamsoft iCMS. No information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...

9.8CVSS7.7AI score0.00777EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/08/05 12:0 a.m.6 views

idreamsoft iCMS Cross-Site Scripting Vulnerability

idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A cross-site scripting vulnerability exists in versions prior to idreamsoft iCMS 2.16.1-git. An attacker can exploit this vulnerability to perform cross-site scripting attacks...

4.8CVSS6.2AI score0.00409EPSS
Exploits1References3
CNNVD
CNNVD
added 2020/12/10 12:0 a.m.9 views

idreamsoft iCMS Operating System Command Injection Vulnerability

idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A security vulnerability exists in Idreamsoft iCMS 7, which can be exploited by an attacker to install.php by executing arbitrary commands via a shell with metacharacters in the DB prefix parameter...

10CVSS7.4AI score0.01534EPSS
Exploits1References2
CNNVD
CNNVD
added 2020/12/10 12:0 a.m.8 views

idreamsoft iCMS Operating System Command Injection Vulnerability

idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A security vulnerability exists in iCMS 7.0.14, which can be exploited by an attacker to install.php by executing arbitrary OS commands via shell metacharacters in the DB NAME parameter...

10CVSS7.4AI score0.01534EPSS
Exploits1References2
CNVD
CNVD
added 2019/10/16 12:0 a.m.2 views

idreamsoft iCMS Denial of Service Vulnerability

idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A security vulnerability exists in idreamsoft iCMS version 7.0.15. A remote attacker can exploit the vulnerability to cause a denial of service resource consumption by querying comments...

7.5CVSS6.8AI score0.01259EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/16 12:0 a.m.3 views

idreamsoft iCMS spider_project.admincp.php file SQL injection vulnerability

idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A SQL injection vulnerability exists in the spiderproject.admincp.php file in idreamsoft iCMS version 7.0.14. The vulnerability stems from a lack of validation of externally entered SQL statements in...

9.8CVSS8.2AI score0.01095EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/10/14 3:47 p.m.16 views

CVE-2019-17583

idreamsoft iCMS 7.0.15 allows remote attackers to cause a denial of service resource consumption via a query for many comments, as demonstrated by the admincp.php?app=comment&perpage= substring followed by a large positive integer...

7.4AI score0.01259EPSS
Exploits0References1
CVE
CVE
added 2019/10/14 3:47 p.m.64 views

CVE-2019-17583

This CVE affects idreamsoft iCMS 7.0.15 . The vulnerability is a Denial of Service via a crafted request that abuses the comment query in admincp.php (app=comment&perpage=...), causing resource consumption when querying many comments. Root cause is not explicitly detailed beyond a large positive ...

7.5CVSS7.4AI score0.01259EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/10/14 1:15 p.m.18 views

CVE-2019-17552

An issue was discovered in idreamsoft iCMS v7.0.14. There is a spiderproject.admincp.php SQL injection vulnerability in the 'upload spider project scheme' feature via a two-dimensional payload...

9.8CVSS9.8AI score0.01095EPSS
Exploits1References1
OSV
OSV
added 2019/10/14 1:15 p.m.4 views

CVE-2019-17552

An issue was discovered in idreamsoft iCMS v7.0.14. There is a spiderproject.admincp.php SQL injection vulnerability in the 'upload spider project scheme' feature via a two-dimensional payload...

9.8CVSS5.8AI score0.01095EPSS
Exploits1References1
CVE
CVE
added 2019/10/14 12:32 p.m.48 views

CVE-2019-17552

Concrete details found: CVE-2019-17552 affects idreamsoft iCMS v7.0.14. The vulnerability is a SQL injection in spider_project.admincp.php during the 'upload spider project scheme' feature, exploitable via a two-dimensional payload. The issue is documented across multiple sources (NVD, Red Hat, C...

9.8CVSS9.7AI score0.01095EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/09/21 8:15 p.m.18 views

CVE-2019-16677

An issue was discovered in idreamsoft iCMS V7.0. admincp.php?app=members&do=del allows CSRF...

6.5CVSS6.5AI score0.00472EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/09/21 7:51 p.m.17 views

CVE-2019-16677

An issue was discovered in idreamsoft iCMS V7.0. admincp.php?app=members&do=del allows CSRF...

6.5AI score0.00472EPSS
Exploits1References1
CVE
CVE
added 2019/09/21 7:51 p.m.80 views

CVE-2019-16677

CVE-2019-16677 affects idreamsoft iCMS 7.0; the vulnerability is a CSRF flaw in admincp.php?app=members&do=del. The connected records corroborate a CSRF issue but do not provide exploit details, affected versions beyond iCMS V7.0, or remediation steps. MITRE/ATT&CK mappings are not specified in t...

6.5CVSS6.4AI score0.00472EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2019/08/13 12:0 a.m.1 views

idreamsoft iCMS Cross-Site Scripting Vulnerability (CNVD-2020-17020)

idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A cross-site scripting vulnerability exists in idreamsoft iCMS version 7.0.15, which stems from a lack of proper validation of client-side data in the WEB application and can be exploited by an attacker to...

6.1CVSS6.5AI score0.00826EPSS
Exploits1References1
NVD
NVD
added 2019/04/22 11:29 a.m.12 views

CVE-2019-11426

An XSS issue was discovered in app/admincp/template/admincp.header.php in idreamsoft iCMS 7.0.14 via the admincp.php?app=config tab parameter...

6.1CVSS6AI score0.00826EPSS
Exploits1References1
Rows per page
Query Builder