CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-42321

Cross Site Request Forgery (CSRF) vulnerability in icmsdev iCMSv.7.0.16 allows a remote attacker to execute arbitrary code via the user.admincp.php, members.admincp.php, and group.admincp.php files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.9%

CVSS Severity

CVSS v3 Score 8.8

References

https://gist.github.com/ChubbyZ/cb4b8fd818846dec3e9d70863e7955bc
https://www.icmsdev.com/
https://gist.github.com/ChubbyZ/cb4b8fd818846dec3e9d70863e7955bc
https://www.icmsdev.com/

Products affected by CVE-2023-42321

Icmsdev » Icms » Version: 7.0.16

cpe:2.3:a:icmsdev:icms:7.0.16

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-42321

Products

Pricing

Contact Us