Shodan
Vulnerabilities
Vulnerable Software
Acc:  >> Dm Corporative Cms  Security Vulnerabilities
CVE-2025-40662
Absolute path disclosure vulnerability in DM Corporative CMS. This vulnerability allows an attacker to view the contents of webroot/file, if navigating to a non-existent file.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-06-10
CVE-2025-40657
A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to retrieve, create, update and delete databases through the codform parameter in /modules/forms/collectform.asp.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-06-10
CVE-2025-40658
An Insecure Direct Object Reference (IDOR) vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to access the private area setting the option parameter equal to 0, 1 or 2 in /administer/selectionnode/framesSelection.asp.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-06-10
CVE-2025-40659
An Insecure Direct Object Reference (IDOR) vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to access the private area setting the option parameter equal to 0, 1 or 2 in /administer/selectionnode/framesSelectionNetworks.asp.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-06-10
CVE-2025-40660
An Insecure Direct Object Reference (IDOR) vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to access the private area setting the option parameter equal to 0, 1 or 2 in /administer/select node/data.asp?mode=catalogue&id1=1&id2=1session=&cod=1&networks=0.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-06-10
CVE-2025-40661
An Insecure Direct Object Reference (IDOR) vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to access the private area setting the option parameter equal to 0, 1 or 2 in /administer/selectionnode/selection.asp.
CVSS Score
7.5
EPSS Score
0.0
Published
2025-06-10
CVE-2025-40655
A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to retrieve, create, update and delete databases through the name parameter in /antcatalogue.asp.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-06-10
CVE-2025-40656
A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to retrieve, create, update and delete databases through the cod parameter in /administer/node-selection/data.asp.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-06-10
CVE-2025-40654
A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to retrieve, create, update and delete databases through the name and cod parameters in /antbuspre.asp.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-06-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved