Published: 28/03/2022 Updated: 04/04/2022

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

ImpressCMS prior to 1.4.3 has Incorrect Access Control because include/findusers.php allows access by unauthenticated attackers (who are, by design, able to have a security token).

Vulnerable Product	Search on Vulmon	Subscribe to Product
impresscms impresscms

ImpressCMS versions 142 and below pre-authentication SQL injection to remote code execution exploit User input passed through the "groups" POST parameter to the /include/findusersphp script is not properly sanitized before being passed to the icms_member_Handler::getUserCountByGroupLink() and icms_member_Handler::getUsersByGroupLink() methods ...

ImpressCMS versions 142 and below suffer from an incorrect access control vulnerability ...

CWE-287 http://karmainsecurity.com/KIS-2022-03 https://hackerone.com/reports/1081137 https://packetstormsecurity.com/files/166403/ImpressCMS-1.4.2-Incorrect-Access-Control.html http://seclists.org/fulldisclosure/2022/Mar/45 https://nvd.nist.gov https://packetstormsecurity.com/files/166419/ImpressCMS-1.4.2-SQL-Injection-Remote-Code-Execution.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-26598

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect