Vulnerabilities > Thecosy

DATE CVE VULNERABILITY TITLE RISK
2023-11-30 CVE-2023-6438 Improper Enforcement of a Single, Unique Action vulnerability in Thecosy Icecms 2.0.1
A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1.
network
low complexity
thecosy CWE-837
5.3
2023-10-12 CVE-2023-40833 Unspecified vulnerability in Thecosy Icecms 1.0.0
An issue in Thecosy IceCMS v.1.0.0 allows a remote attacker to gain privileges via the Id and key parameters in getCosSetting.
network
low complexity
thecosy
critical
9.8
2023-05-25 CVE-2023-33355 Unspecified vulnerability in Thecosy Icecms 1.0.0
IceCMS v1.0.0 has Insecure Permissions.
network
low complexity
thecosy
7.5
2023-05-25 CVE-2023-33356 Cross-site Scripting vulnerability in Thecosy Icecms 1.0.0
IceCMS v1.0.0 is vulnerable to Cross Site Scripting (XSS).
network
low complexity
thecosy CWE-79
5.4