Vulnerabilities > CVE-2023-6757 - Unspecified vulnerability in Thecosy Icecms 2.0.1

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

thecosy

NVD

Published: 2023-12-13

Updated: 2024-05-17

Summary

A vulnerability was found in Thecosy IceCMS 2.0.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /adplanet/PlanetUser of the component API. The manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-247885 was assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Thecosy Thecosy Icecms 2.0.1	1

References

https://vuldb.com/?id.247885
https://vuldb.com/?ctiid.247885
http://124.71.147.32:8082/IceCMS3.html