Icecms Security Vulnerabilities and Issues — Icecms CVE List | Vulners.com

Lucene search

K

ThecosyIcecms

4 matches found

CVE•added 2024/09/25 1:15 a.m.•67 views

CVE-2024-46612

IceCMS v3.4.7 and before was discovered to contain a hardcoded JWT key, allowing an attacker to forge JWT authentication information.

9.8CVSS7.5AI score0.00243EPSS

CVE•added 2024/10/30 7:15 p.m.•47 views

CVE-2024-48202

icecms

9.8CVSS7AI score0.00471EPSS

CVE•added 2023/10/12 6:15 a.m.•33 views

CVE-2023-40833

An issue in Thecosy IceCMS v.1.0.0 allows a remote attacker to gain privileges via the Id and key parameters in getCosSetting.

9.8CVSS9.4AI score0.00436EPSS

CVE•added 2023/12/13 2:15 p.m.•20 views

CVE-2023-6756

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been classified as problematic. Affected is an unknown function of the file /login of the component Captcha Handler. The manipulation leads to improper restriction of excessive authentication attempts. It is possible to launch the attack rem...

9.8CVSS7.7AI score0.00279EPSS