CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-30661

iCMS v8.0.0 contains a Cross-Site Scripting (XSS) vulnerability in the User Management component, specifically within the index.html file. This allows remote attackers to execute arbitrary web script or HTML via the regip or loginip parameters.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.8%

CVSS Severity

CVSS v3 Score 6.1

References

https://wang1rrr.github.io/2026/02/09/CVE-Report-iCMS-v8.0.0-XSS/

Products affected by CVE-2026-30661

Idreamsoft » Icms » Version: 8.0.0

cpe:2.3:a:idreamsoft:icms:8.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-30661

Products

Pricing

Contact Us