CVE-2021-35370
CRITICAL
9.8
CVSS Severity Score
Vulnerability Description
An issue found in Peacexie Imcat v5.4 allows attackers to execute arbitrary code via the incomplete filtering function.
Affected Platforms (CPE)
📦
Txjia
CVEブラウザに戻る
関連する脆弱性情報
CVE-2019-149689.8
An issue was discovered in imcat 4.9. There is SQL Injection via the index.php order parameter in a mod=faqs action.
CVE-2020-203929.8
SQL Injection vulnerability in imcat v5.2 via the fm[auser] parameters in coms/add_coms.php.
CVE-2018-206059.8
imcat 4.4 allows remote attackers to execute arbitrary PHP code by using root/run/adm.php to modify the boot/bootskip.php file.
CVE-2020-221208.8
A remote code execution (RCE) vulnerability in /root/run/adm.php?admin-ediy&part=exdiy of imcat v5.1 allows authenticated attacker...