iDreamSoft iCMS 7.0.16

CPE Details

iDreamSoft iCMS 7.0.16
idreamsoft
icms
7.0.16
2021-03-15
14h56 +00:00
2021-05-21
13h37 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:idreamsoft:icms:7.0.16:*:*:*:*:*:*:*

Informations

Vendor

idreamsoft

Product

icms

Version

7.0.16

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-40953 2023-09-07 22h00 +00:00 icms 7.0.16 is vulnerable to Cross Site Request Forgery (CSRF).
8.8
Haute
CVE-2023-39805 2023-08-09 22h00 +00:00 iCMS v7.0.16 was discovered to contain a SQL injection vulnerability via the where parameter at admincp.php.
9.8
Critique
CVE-2023-39806 2023-08-09 22h00 +00:00 iCMS v7.0.16 was discovered to contain a SQL injection vulnerability via the bakupdata function.
9.8
Critique
CVE-2022-41496 2022-10-12 22h00 +00:00 iCMS v7.0.16 was discovered to contain a Server-Side Request Forgery (SSRF) via the url parameter at admincp.php.
9.8
Critique
CVE-2021-44977 2022-02-04 14h35 +00:00 In iCMS <=8.0.0, a directory traversal vulnerability allows an attacker to read arbitrary files.
7.5
Haute
CVE-2021-44978 2022-02-04 14h29 +00:00 iCMS <= 8.0.0 allows users to add and render a comtom template, which has a SSTI vulnerability which causes remote code execution.
9.8
Critique
CVE-2020-26641 2021-05-28 17h58 +00:00 A Cross Site Request Forgery (CSRF) vulnerability was discovered in iCMS 7.0.16 which can allow an attacker to execute arbitrary web scripts.
8.8
Haute