Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2018-12498
Disclosure Date: June 15, 2018 (last updated November 26, 2024)
spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id parameter in an app=spider&do=batch request to admincp.php.
0
Attacker Value
Unknown
CVE-2018-10250
Disclosure Date: April 20, 2018 (last updated November 26, 2024)
iCMS V7.0.8 has XSS via the admincp.php keywords parameter in a weixin_category action, aka a WeChat Classified Management keyword search.
0
