Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown
CVE-2018-16332
Disclosure Date: September 02, 2018 (last updated November 27, 2024)
An issue was discovered in iCMS 7.0.9. There is an admincp.php?app=article&do=update CSRF vulnerability.
0
Attacker Value
Unknown
CVE-2018-14514
Disclosure Date: July 23, 2018 (last updated November 27, 2024)
An SSRF vulnerability was discovered in idreamsoft iCMS V7.0.9 that allows attackers to read sensitive files, access an intranet, or possibly have unspecified other impact.
0
Attacker Value
Unknown
CVE-2018-13865
Disclosure Date: July 10, 2018 (last updated November 27, 2024)
An issue was discovered in idreamsoft iCMS 7.0.9. XSS exists via the callback parameter in a public/api.php uploadpic request, bypassing the iWAF protection mechanism.
0
