Imcat
by Peacexie
Source repositories
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-20608 | 0.05 | — | 0.64 | Dec 30, 2018 | imcat 4.4 allows remote attackers to read phpinfo output via the root/tools/adbug/binfo.php?phpinfo1 URI. | |||
| CVE-2018-20606 | 0.01 | — | 0.07 | Dec 30, 2018 | imcat 4.4 allows full path disclosure via a dev.php?tools-ipaddr&api=Pcoln&uip= URI. | |||
| CVE-2019-8436 | 0.00 | — | 0.00 | Feb 18, 2019 | imcat 4.5 has Stored XSS via the root/run/adm.php fm[instop][note] parameter. | |||
| CVE-2018-20609 | 0.00 | — | 0.03 | Dec 30, 2018 | imcat 4.4 allows remote attackers to obtain potentially sensitive configuration information via the root/tools/adbug/check.php URI. | |||
| CVE-2018-20605 | 0.00 | — | 0.01 | Dec 30, 2018 | imcat 4.4 allows remote attackers to execute arbitrary PHP code by using root/run/adm.php to modify the boot/bootskip.php file. | |||
| CVE-2018-20611 | 0.00 | — | 0.00 | Dec 30, 2018 | imcat 4.4 allow XSS via a crafted cookie to the root/tools/adbug/binfo.php?cookie URI. | |||
| CVE-2018-20610 | 0.00 | — | 0.01 | Dec 30, 2018 | imcat 4.4 allows directory traversal via the root/run/adm.php efile parameter. | |||
| CVE-2018-20607 | 0.00 | — | 0.03 | Dec 30, 2018 | imcat 4.4 allows remote attackers to obtain potentially sensitive debugging information via the root/tools/adbug/binfo.php URI. |
- CVE-2018-20608Dec 30, 2018risk 0.05cvss —epss 0.64
imcat 4.4 allows remote attackers to read phpinfo output via the root/tools/adbug/binfo.php?phpinfo1 URI.
- CVE-2018-20606Dec 30, 2018risk 0.01cvss —epss 0.07
imcat 4.4 allows full path disclosure via a dev.php?tools-ipaddr&api=Pcoln&uip= URI.
- CVE-2019-8436Feb 18, 2019risk 0.00cvss —epss 0.00
imcat 4.5 has Stored XSS via the root/run/adm.php fm[instop][note] parameter.
- CVE-2018-20609Dec 30, 2018risk 0.00cvss —epss 0.03
imcat 4.4 allows remote attackers to obtain potentially sensitive configuration information via the root/tools/adbug/check.php URI.
- CVE-2018-20605Dec 30, 2018risk 0.00cvss —epss 0.01
imcat 4.4 allows remote attackers to execute arbitrary PHP code by using root/run/adm.php to modify the boot/bootskip.php file.
- CVE-2018-20611Dec 30, 2018risk 0.00cvss —epss 0.00
imcat 4.4 allow XSS via a crafted cookie to the root/tools/adbug/binfo.php?cookie URI.
- CVE-2018-20610Dec 30, 2018risk 0.00cvss —epss 0.01
imcat 4.4 allows directory traversal via the root/run/adm.php efile parameter.
- CVE-2018-20607Dec 30, 2018risk 0.00cvss —epss 0.03
imcat 4.4 allows remote attackers to obtain potentially sensitive debugging information via the root/tools/adbug/binfo.php URI.