iDreamSoft iCMS 7.0.15

CPE Details

iDreamSoft iCMS 7.0.15
idreamsoft
icms
7.0.15
2019-10-17
15h44 +00:00
2019-10-17
15h44 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:idreamsoft:icms:7.0.15:*:*:*:*:*:*:*

Informations

Vendor

idreamsoft

Product

icms

Version

7.0.15

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-44977 2022-02-04 14h35 +00:00 In iCMS <=8.0.0, a directory traversal vulnerability allows an attacker to read arbitrary files.
7.5
Haute
CVE-2021-44978 2022-02-04 14h29 +00:00 iCMS <= 8.0.0 allows users to add and render a comtom template, which has a SSTI vulnerability which causes remote code execution.
9.8
Critique
CVE-2020-21141 2021-11-12 20h57 +00:00 iCMS v7.0.15 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admincp.php?app=members&do=add.
8.8
Haute
CVE-2019-17583 2019-10-14 13h47 +00:00 idreamsoft iCMS 7.0.15 allows remote attackers to cause a denial of service (resource consumption) via a query for many comments, as demonstrated by the admincp.php?app=comment&perpage= substring followed by a large positive integer.
7.5
Haute