Icms
CVEs (3)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2005-4396 | 0.00 | — | 0.00 | Dec 20, 2005 | Cross-site scripting (XSS) vulnerability in admin/Default.asp in iCMS allows remote attackers to inject arbitrary web script or HTML via the LoginMSG parameter. NOTE: the provenance of this issue is unknown; the details were obtained solely from third party sources. | ||
| CVE-2005-4397 | 0.00 | — | 0.00 | Dec 20, 2005 | SQL injection vulnerability in RunScript.asp iCMS allows remote attackers to execute arbitrary SQL commands via the Event_ID parameter. | ||
| CVE-2005-3574 | 0.00 | — | 0.00 | Nov 16, 2005 | PHP file inclusion vulnerability in index.php of iCMS allows remote attackers to include arbitrary files via the page parameter. |
- CVE-2005-4396Dec 20, 2005risk 0.00cvss —epss 0.00
Cross-site scripting (XSS) vulnerability in admin/Default.asp in iCMS allows remote attackers to inject arbitrary web script or HTML via the LoginMSG parameter. NOTE: the provenance of this issue is unknown; the details were obtained solely from third party sources.
- CVE-2005-4397Dec 20, 2005risk 0.00cvss —epss 0.00
SQL injection vulnerability in RunScript.asp iCMS allows remote attackers to execute arbitrary SQL commands via the Event_ID parameter.
- CVE-2005-3574Nov 16, 2005risk 0.00cvss —epss 0.00
PHP file inclusion vulnerability in index.php of iCMS allows remote attackers to include arbitrary files via the page parameter.