Arbitrary File Read vulnerability found in Peacexie ImCat v.5.2 fixed in v.5.4 allows attackers to obtain sensitive information via the filtering_get_contents function.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-02-24
SQL Injection vulnerability in imcat v5.2 via the fm[auser] parameters in coms/add_coms.php.
CVSS Score
9.8
EPSS Score
0.01
Published
2021-06-23
imcat 5.2 allows an authenticated file upload and consequently remote code execution via the picture functionality.
CVSS Score
7.2
EPSS Score
0.025
Published
2020-12-09