7 matches found
CVE-2018-20611
imcat 4.4 allow XSS via a crafted cookie to the root/tools/adbug/binfo.php?cookie URI...
imcat Cross-Site Scripting Vulnerability
imcat is a PHP-based open source website building system . A cross-site scripting vulnerability exists in imcat version 4.4. Remote attackers can use this vulnerability to inject arbitrary Web script or HTML by sending a specially crafted cookie to root/tools/adbug/binfo.php?cookie URI...
Code injection
imcat 4.4 allows remote attackers to read phpinfo output via the root/tools/adbug/binfo.php?phpinfo1 URI...
Design/Logic Flaw
imcat 4.4 allow XSS via a crafted cookie to the root/tools/adbug/binfo.php?cookie URI...
CVE-2018-20608
imcat 4.4 allows remote attackers to read phpinfo output via the root/tools/adbug/binfo.php?phpinfo1 URI...
CVE-2018-20609
imcat 4.4 allows remote attackers to obtain potentially sensitive configuration information via the root/tools/adbug/check.php URI...
CVE-2018-20609
imcat 4.4 allows remote attackers to obtain potentially sensitive configuration information via the root/tools/adbug/check.php URI...