Shodan
Vulnerabilities
Vulnerable Software
Idccms:  Security Vulnerabilities
CVE-2024-11587
A vulnerability was found in idcCMS 1.60. It has been classified as problematic. This affects the function GetCityOptionJs of the file /inc/classProvCity.php. The manipulation of the argument idName leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
3.5
EPSS Score
0.001
Published
2024-11-21
CVE-2024-40331
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/dbBakMySQL_deal.php?mudi=backup
CVSS Score
8.8
EPSS Score
0.0
Published
2024-07-10
CVE-2024-40332
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/moneyRecord_deal.php?mudi=delRecord
CVSS Score
8.8
EPSS Score
0.0
Published
2024-07-10
CVE-2024-40336
idccms v1.35 is vulnerable to Cross Site Scripting (XSS) within the 'Image Advertising Management.'
CVSS Score
6.1
EPSS Score
0.0
Published
2024-07-10
CVE-2024-40328
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/memberOnline_deal.php?mudi=del&dataType=&dataID=6
CVSS Score
6.3
EPSS Score
0.001
Published
2024-07-10
CVE-2024-40329
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=backup
CVSS Score
8.8
EPSS Score
0.001
Published
2024-07-10
CVE-2024-40333
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=del&dataID=2
CVSS Score
8.8
EPSS Score
0.003
Published
2024-07-10
CVE-2024-40334
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/serverFile_deal.php?mudi=upFileDel&dataID=3
CVSS Score
8.8
EPSS Score
0.001
Published
2024-07-10
CVE-2024-40035
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userLevel_deal.php?mudi=add.
CVSS Score
5.9
EPSS Score
0.0
Published
2024-07-09
CVE-2024-40036
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userGroup_deal.php?mudi=add&nohrefStr=close
CVSS Score
8.8
EPSS Score
0.003
Published
2024-07-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved