Vulnerabilities (CVE)

Filtered by vendor Txjia Subscribe

Filtered by product Imcat

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-20392	1 Txjia	1 Imcat	2021-06-25	7.5 HIGH	9.8 CRITICAL
SQL Injection vulnerability in imcat v5.2 via the fm[auser] parameters in coms/add_coms.php.
CVE-2019-14968	1 Txjia	1 Imcat	2019-08-15	7.5 HIGH	9.8 CRITICAL
An issue was discovered in imcat 4.9. There is SQL Injection via the index.php order parameter in a mod=faqs action.
CVE-2018-20605	1 Txjia	1 Imcat	2019-01-09	7.5 HIGH	9.8 CRITICAL
imcat 4.4 allows remote attackers to execute arbitrary PHP code by using root/run/adm.php to modify the boot/bootskip.php file.