Vulnerabilities > Artica > Integria IMS > 5.0.92

DATE CVE VULNERABILITY TITLE RISK
2021-10-07 CVE-2021-3833 Incorrect Comparison vulnerability in Artica Integria IMS 5.0.92
Integria IMS login check uses a loose comparator ("==") to compare the MD5 hash of the password provided by the user and the MD5 hash stored in the database.
network
low complexity
artica CWE-697
critical
 9.8
9.8
2021-10-07 CVE-2021-3834 Cross-site Scripting vulnerability in Artica Integria IMS 5.0.92
Integria IMS in its 5.0.92 version does not filter correctly some fields related to the login.php file.
network
low complexity
artica CWE-79
6.1
6.1
2021-10-07 CVE-2021-3832 Unrestricted Upload of File with Dangerous Type vulnerability in Artica Integria IMS 5.0.92
Integria IMS in its 5.0.92 version is vulnerable to a Remote Code Execution attack through file uploading.
network
low complexity
artica CWE-434
7.5
7.5