Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ilch ilch cms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1944
Cross-site scripting (XSS) vulnerability in Ilch CMS 2.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the text parameter to index.php/guestbook/index/newentry.
Ilch Ilch Cms
1 EDB exploit
4.8
CVSSv3
CVE-2019-17045
Ilch 2.1.22 allows stored XSS via the title, text, or email id to the Jobs Tab.
Ilch Ilch Cms 2.1.22
7.2
CVSSv3
CVE-2019-17046
Ilch 2.1.22 allows remote code execution because php is listed under "Allowed files" on the index.php/admin/media/settings/index page.
Ilch Ilch Cms 2.1.22
6.1
CVSSv3
CVE-2019-20522
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Link parameter.
Ilch Ilch Cms 2.1.23
6.1
CVSSv3
CVE-2019-20524
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter.
Ilch Ilch Cms 2.1.23
6.1
CVSSv3
CVE-2019-20523
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Name parameter.
Ilch Ilch Cms 2.1.23
5.4
CVSSv3
CVE-2021-27352
An open redirect vulnerability in Ilch CMS version 2.1.42 allows malicious users to redirect users to an attacker's site after a successful login.
Ilch Ilch Cms 2.1.42
NA
CVE-2015-2083
Cross-site request forgery (CSRF) vulnerability in Ilch CMS allows remote malicious users to hijack the authentication of administrators for requests that add a value to a profile field via a profilefields request to admin.php.
Ilch Cms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started