VYPR
Critical severity9.8NVD Advisory· Published Jun 15, 2018· Updated Jun 17, 2026

CVE-2018-12498

CVE-2018-12498

Description

spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id parameter in an app=spider&do=batch request to admincp.php.

Affected products

2
  • Idreamsoft/Icmsinferred2 versions
    = 7.0.8+ 1 more
    • (no CPE)range: = 7.0.8
    • (no CPE)range: =7.0.8

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.