Vulnerabilities > Idccms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-21 | CVE-2024-11587 | Cross-site Scripting vulnerability in Idccms 1.60 A vulnerability was found in idcCMS 1.60. | 6.1 |
| 2024-07-10 | CVE-2024-40332 | Cross-Site Request Forgery (CSRF) vulnerability in Idccms 1.35 idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/moneyRecord_deal.php?mudi=delRecord | 8.8 |
| 2024-07-10 | CVE-2024-40334 | Cross-Site Request Forgery (CSRF) vulnerability in Idccms 1.35 idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/serverFile_deal.php?mudi=upFileDel&dataID=3 | 8.8 |
| 2024-06-04 | CVE-2024-36547 | Cross-Site Request Forgery (CSRF) vulnerability in Idccms 1.35 idccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/vpsClass_deal.php?mudi=add | 8.8 |
| 2024-06-04 | CVE-2024-36548 | Cross-Site Request Forgery (CSRF) vulnerability in Idccms 1.35 idccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/vpsCompany_deal.php?mudi=del | 8.8 |
| 2024-06-04 | CVE-2024-36549 | Cross-Site Request Forgery (CSRF) vulnerability in Idccms 1.35 idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/vpsCompany_deal.php?mudi=rev&nohrefStr=close | 8.8 |
| 2024-06-04 | CVE-2024-36550 | Cross-Site Request Forgery (CSRF) vulnerability in Idccms 1.35 idccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/vpsCompany_deal.php?mudi=add&nohrefStr=close | 8.8 |