Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2024/05/06 1:15 p.m.8 views

CVE-2024-33829

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/readDeal.php?mudi=updateWebCache...

5.4CVSS7.1AI score0.0015EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2024/05/06 12:0 a.m.1 views

PT-2024-25500 · Idccms · Idccms

Name of the Vulnerable Software and Affected Versions: idccms version 1.35 Description: A Cross-Site Request Forgery CSRF issue was discovered in the component /admin/readDeal.php?mudi=updateWebCache. This issue allows for potential exploitation. Recommendations: For idccms version 1.35, consider...

5.4CVSS7.1AI score0.0015EPSS
Exploits1References6
CVE
CVEadded 2024/05/06 12:0 a.m.50 views

CVE-2024-33830

CVE-2024-33830 affects idccms v1.35, where a Cross-Site Request Forgery (CSRF) is possible through the /admin/readDeal.php?mudi=clearWebCache component. The root cause is CSRF in the readDeal.php path, enabling unauthorized actions on behalf of an authenticated user. Impact is described as HIGH (...

8.1CVSS7.4AI score0.00181EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/05/06 12:0 a.m.11 views

CVE-2024-33830

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/readDeal.php?mudi=clearWebCache...

7.5AI score0.00181EPSS
Exploits1References1
CVE
CVEadded 2024/05/06 12:0 a.m.46 views

CVE-2024-33829

CVE-2024-33829 affects idccms v1.35, with a Cross-Site Request Forgery (CSRF) in the component accessible at /admin/readDeal.php?mudi=updateWebCache. The vulnerability is described across multiple sources as CSRF via that parameter; the NVD/CVE entry lists a CVSS v3.1 base score of 5.4 (Medium) w...

5.4CVSS7.4AI score0.0015EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2023/06/14 9:15 a.m.13 views

Path traversal

A vulnerability, which was classified as problematic, was found in OTCMS up to 6.62. Affected is an unknown function of the file admin/readDeal.php?mudi=readQrCode. The manipulation of the argument img leads to path traversal: '../filedir'. The exploit has been disclosed to the public and may be...

2.7CVSS7.6AI score0.00153EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2023/06/14 8:31 a.m.9 views

CVE-2023-3239 OTCMS path traversal

A vulnerability, which was classified as problematic, was found in OTCMS up to 6.62. Affected is an unknown function of the file admin/readDeal.php?mudi=readQrCode. The manipulation of the argument img leads to path traversal: '../filedir'. The exploit has been disclosed to the public and may be...

3.5CVSS7.8AI score0.00153EPSS
Exploits1References3
CVE
CVEadded 2023/06/14 8:31 a.m.37 views

CVE-2023-3239

CVE-2023-3239 affects OTCMS up to version 6.62. Affected is an unknown function in admin/readDeal.php?mudi=readQrCode; manipulating the img parameter can trigger path traversal to ../filedir. The vulnerability has been publicly disclosed. Multiple connected sources (Red Hat, PRION, PT Security, C...

7.5CVSS5.7AI score0.00153EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder