Lucene search
TxjiaImcat
4 matches found
CVE-2018-20605
imcat 4.4 allows remote attackers to execute arbitrary PHP code by using root/run/adm.php to modify the boot/bootskip.php file.
9.8CVSS9.7AI score0.00994EPSS
CVE-2019-14968
An issue was discovered in imcat 4.9. There is SQL Injection via the index.php order parameter in a mod=faqs action.
9.8CVSS9.8AI score0.00264EPSS
CVE-2020-20392
SQL Injection vulnerability in imcat v5.2 via the fm[auser] parameters in coms/add_coms.php.
9.8CVSS9.9AI score0.01031EPSS
CVE-2021-35370
An issue found in Peacexie Imcat v5.4 allows attackers to execute arbitrary code via the incomplete filtering function.
9.8CVSS9.7AI score0.00739EPSS