VYPR

Integri IMS

by Artica

CVEs (3)

  • CVE-2019-15091CriAug 16, 2019
    risk 0.64cvss 9.8epss 0.02

    filemgr.php in Artica Integria IMS 5.0.86 allows index.php?sec=wiki&sec2=operation/wiki/wiki&action=upload arbitrary file upload.

  • CVE-2018-1000812HigDec 20, 2018
    risk 0.53cvss 8.1epss 0.02

    Artica Integria IMS version 5.0 MR56 Package 58, likely earlier versions contains a CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability in Password recovery process, line 45 of general/password_recovery.php that can result in IntegriaIMS web app user…

  • CVE-2018-19829MedDec 18, 2018
    risk 0.45cvss 6.5epss 0.02

    Artica Integria IMS 5.0.83 has CSRF in godmode/usuarios/lista_usuarios, resulting in the ability to delete an arbitrary user when the ID number is known.