Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
impresscms impresscms 1.2.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-0986
Multiple cross-site scripting (XSS) vulnerabilities in ImpressCMS 1.2.x prior to 1.2.7 Final and 1.3.x prior to 1.3.1 Final allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) notifications.php, (2) modules/system/admin/images/browser.php,...
Impresscms Impresscms 1.2.6
Impresscms Impresscms 1.2.3
Impresscms Impresscms 1.2.5
Impresscms Impresscms 1.2
Impresscms Impresscms 1.3
Impresscms Impresscms 1.2.1
Impresscms Impresscms 1.2.4
NA
CVE-2012-0987
Directory traversal vulnerability in edituser.php in ImpressCMS 1.2.x prior to 1.2.7 Final and 1.3.x prior to 1.3.1 Final allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the icmsConfigPlugins[sanitizer_plugins][] parameter.
Impresscms Impresscms 1.2.6
Impresscms Impresscms 1.2.3
Impresscms Impresscms 1.2.5
Impresscms Impresscms 1.2
Impresscms Impresscms 1.3
Impresscms Impresscms 1.2.1
Impresscms Impresscms 1.2.4
NA
CVE-2010-4616
Cross-site scripting (XSS) vulnerability in modules/content/admin/content.php in ImpressCMS 1.2.3 Final, and possibly other versions prior to 1.2.4, allows remote malicious users to inject arbitrary web script or HTML via the quicksearch_ContentContent parameter.
Impresscms Impresscms 1.1
Impresscms Impresscms 1.2.3
Impresscms Impresscms 1.1.3
Impresscms Impresscms 1.2
Impresscms Impresscms 1.1.1
Impresscms Impresscms 1.0
Impresscms Impresscms 1.2.1
Impresscms Impresscms 1.1.2
Impresscms Impresscms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started