📦 Idccms
by Idccms
🔍 What is Idccms?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized database backup operations. Attackers can force administrators to execute da...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions, specifically database backup operations via the /admin/softBak_deal...
CVE-2024-40334 is a Cross-Site Request Forgery (CSRF) vulnerability in idccms v1.35 that allows attackers to trick authenticated administrators into performing unauthorized file deletion operations. T...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions by visiting malicious web pages. Attackers could create new user gro...
CVE-2024-39022 is a Cross-Site Request Forgery vulnerability in idccms v1.35 that allows attackers to trick authenticated administrators into performing unauthorized actions via the /admin/infoSys_dea...
CVE-2024-39158 is a Cross-Site Request Forgery vulnerability in idccms v1.35 that allows attackers to trick authenticated administrators into performing unauthorized actions via the /admin/userSys_dea...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions by visiting malicious web pages. Attackers can delete keyword data w...
This CSRF vulnerability in idccms V1.35 allows attackers to trick authenticated administrators into performing unauthorized actions, specifically deleting company records via the admin interface. Any ...
This CSRF vulnerability in idccms V1.35 allows attackers to trick authenticated administrators into performing unauthorized actions via crafted requests to the admin panel. Attackers can add VPS compa...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions via crafted requests. Attackers could delete logos or potentially pe...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions via crafted requests to the /admin/vpsSys_deal.php endpoint. Attacke...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions via malicious requests to the /admin/ca_deal.php endpoint. Attackers...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions via crafted requests to /admin/homePro_deal.php. Attackers could del...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions, specifically deleting banner advertisements via the /admin/banner_d...
CVE-2024-33830 is a Cross-Site Request Forgery vulnerability in idccms v1.35 that allows attackers to trick authenticated administrators into performing unauthorized actions via the /admin/readDeal.ph...
CVE-2022-27333 allows attackers to delete the install.lock file in idcCMS v1.10, which resets the CMS configuration and data. This affects all users running the vulnerable version of idcCMS, potential...
CVE-2024-40336 is a cross-site scripting (XSS) vulnerability in idccms v1.35's Image Advertising Management module. Attackers can inject malicious scripts that execute in users' browsers when viewing ...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions, specifically deleting member online data. It affects all deployment...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unintended actions via the userScore_deal.php endpoint. Attackers can modify user scores ...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions via crafted requests to the vulnerable endpoint. Attackers can modif...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions via the admin/info_deal.php endpoint. Attackers can modify system in...
CVE-2024-39153 is a Cross-Site Request Forgery vulnerability in idccms v1.35 that allows attackers to trick authenticated administrators into performing unauthorized actions via the /admin/info_deal.p...
CVE-2024-35554 is a Cross-Site Request Forgery vulnerability in idccms v1.35 that allows attackers to trick authenticated administrators into performing unauthorized actions via the /admin/infoWeb_dea...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized deletion operations via crafted requests to /admin/ca_deal.php. Only adminis...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions via the /admin/infoWeb_deal.php endpoint. Attackers can modify websi...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions via the banner management interface. Attackers can add malicious ban...
This CSRF vulnerability in idccms v1.35 allows attackers to trick authenticated administrators into performing unauthorized actions by visiting malicious web pages. Attackers could add information typ...
CVE-2024-33829 is a Cross-Site Request Forgery vulnerability in idccms v1.35 that allows attackers to trick authenticated administrators into performing unauthorized actions via the /admin/readDeal.ph...