Ilch Cms Security Vulnerabilities and Issues — Ilch Cms CVE List

Lucene search

IlchIlch Cms

7 matches found

CVE•added 2019/09/30 3:15 p.m.•87 views

CVE-2019-17046

Ilch 2.1.22 allows remote code execution because php is listed under "Allowed files" on the index.php/admin/media/settings/index page.

9CVSS7.4AI score0.04419EPSS

CVE•added 2019/09/30 3:15 p.m.•76 views

CVE-2019-17045

Ilch 2.1.22 allows stored XSS via the title, text, or email id to the Jobs Tab.

4.8CVSS4.8AI score0.00235EPSS

CVE•added 2014/03/09 1:16 p.m.•48 views

CVE-2014-1944

Cross-site scripting (XSS) vulnerability in Ilch CMS 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the text parameter to index.php/guestbook/index/newentry.

4.3CVSS5.6AI score0.05244EPSS

CVE•added 2020/03/19 2:15 p.m.•28 views

CVE-2019-20523

ilchCMS 2.1.23 allows XSS via the index.php/partner/index Name parameter.

6.1CVSS5.9AI score0.00328EPSS

CVE•added 2021/03/29 4:15 p.m.•28 views

CVE-2021-27352

An open redirect vulnerability in Ilch CMS version 2.1.42 allows attackers to redirect users to an attacker's site after a successful login.

5.4CVSS5.3AI score0.00201EPSS

CVE•added 2020/03/19 2:15 p.m.•25 views

CVE-2019-20522

ilchCMS 2.1.23 allows XSS via the index.php/partner/index Link parameter.

6.1CVSS5.9AI score0.00328EPSS

CVE•added 2020/03/19 2:15 p.m.•24 views

CVE-2019-20524

ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter.

6.1CVSS5.9AI score0.00328EPSS