CPE-921182FE-C2C4-4082-A53E-20E415D4C8D7 Détail

CPE Details

iDreamSoft iCMS 7.0.13

Vendor

idreamsoft

Product

icms

Version

7.0.13

Created

2019-01-29
17h43 +00:00

Modifié

2019-01-29
17h43 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:idreamsoft:icms:7.0.13:::::::*

Informations

Vendor

idreamsoft

Product

icms

Version

7.0.13

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2021-44977	2022-02-04 14h35 +00:00	In iCMS <=8.0.0, a directory traversal vulnerability allows an attacker to read arbitrary files.	7.5	Haute
CVE-2021-44978	2022-02-04 14h29 +00:00	iCMS <= 8.0.0 allows users to add and render a comtom template, which has a SSTI vulnerability which causes remote code execution.	9.8	Critique
CVE-2020-18070	2021-04-29 21h28 +00:00	Path Traversal in iCMS v7.0.13 allows remote attackers to delete folders by injecting commands into a crafted HTTP request to the "do_del()" method of the component "database.admincp.php".	9.1	Critique
CVE-2019-8902	2019-02-18 14h00 +00:00	An issue was discovered in idreamsoft iCMS through 7.0.14. A CSRF vulnerability can delete users' articles via the public/api.php?app=user URI.	5.7	Moyen
CVE-2019-7234	2019-01-30 20h00 +00:00	An issue was discovered in idreamsoft iCMS 7.0.13. admincp.php?app=apps&do=save allows directory traversal via _app=/../ to begin the process of creating a ZIP archive file with the complete contents of any directory because of an apps.admincp.php error. This ZIP archive file can then be downloaded via an admincp.php?app=apps&do=pack request.	9.1	Critique
CVE-2019-7235	2019-01-30 20h00 +00:00	An issue was discovered in idreamsoft iCMS 7.0.13. admincp.php?app=apps&do=save allows directory traversal via _app=/../ to designate an arbitrary directory because of an apps.admincp.php error. This directory can then be deleted via an admincp.php?app=apps&do=uninstall request.	7.5	Haute
CVE-2019-7236	2019-01-30 20h00 +00:00	An issue was discovered in idreamsoft iCMS 7.0.13. editor/editor.admincp.php allows admincp.php?app=editor&do=fileManager dir=../ Directory Traversal.	7.5	Haute
CVE-2019-7237	2019-01-30 20h00 +00:00	An issue was discovered in idreamsoft iCMS 7.0.13 on Windows. editor/editor.admincp.php allows admincp.php?app=files&do=browse ..\ Directory Traversal.	7.5	Haute
CVE-2019-7160	2019-01-29 15h00 +00:00	idreamsoft iCMS 7.0.13 allows admincp.php?app=files ../ Directory Traversal via the udir parameter to files.admincp.php, resulting in execution of arbitrary PHP code from a ZIP file via the admincp.php?app=apps zipfile parameter to apps.admincp.php.	9.8	Critique

iDreamSoft iCMS 7.0.13

CPE Details

CPE Name: cpe:2.3:a:idreamsoft:icms:7.0.13:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:idreamsoft:icms:7.0.13:::::::*