Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ilch cms vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-1944
Cross-site scripting (XSS) vulnerability in Ilch CMS 2.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the text parameter to index.php/guestbook/index/newentry.
Ilch Ilch Cms
1 EDB exploit
4.3
CVSSv2
CVE-2019-20522
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Link parameter.
Ilch Ilch Cms 2.1.23
4.3
CVSSv2
CVE-2019-20523
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Name parameter.
Ilch Ilch Cms 2.1.23
4.3
CVSSv2
CVE-2019-20524
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter.
Ilch Ilch Cms 2.1.23
3.5
CVSSv2
CVE-2019-17045
Ilch 2.1.22 allows stored XSS via the title, text, or email id to the Jobs Tab.
Ilch Ilch Cms 2.1.22
9
CVSSv2
CVE-2019-17046
Ilch 2.1.22 allows remote code execution because php is listed under "Allowed files" on the index.php/admin/media/settings/index page.
Ilch Ilch Cms 2.1.22
4.9
CVSSv2
CVE-2021-27352
An open redirect vulnerability in Ilch CMS version 2.1.42 allows malicious users to redirect users to an attacker's site after a successful login.
Ilch Ilch Cms 2.1.42
6.8
CVSSv2
CVE-2015-2083
Cross-site request forgery (CSRF) vulnerability in Ilch CMS allows remote malicious users to hijack the authentication of administrators for requests that add a value to a profile field via a profilefields request to admin.php.
Ilch Cms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started