Ilch Cms

ilch_cms

Vendor: Ilch • 7 CVEs

CVEs (7)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-27352 1Ilch 1Ilch Cms Nov 21, 2024 Mar 29, 2021 N/A· v4 5.4 MEDIUM· v3 4.9 MEDIUM· v2 An open redirect vulnerability in Ilch CMS version 2.1.42 allows attackers to redirect users to an attacker's site after a successful login.
CVE-2019-20524 1Ilch 1Ilch Cms Nov 21, 2024 Mar 19, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter.
CVE-2019-20523 1Ilch 1Ilch Cms Nov 21, 2024 Mar 19, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 ilchCMS 2.1.23 allows XSS via the index.php/partner/index Name parameter.
CVE-2019-20522 1Ilch 1Ilch Cms Nov 21, 2024 Mar 19, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 ilchCMS 2.1.23 allows XSS via the index.php/partner/index Link parameter.
CVE-2019-17046 1Ilch 1Ilch Cms Nov 21, 2024 Sep 30, 2019 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Ilch 2.1.22 allows remote code execution because php is listed under "Allowed files" on the index.php/admin/media/settings/index page.
CVE-2019-17045 1Ilch 1Ilch Cms Nov 21, 2024 Sep 30, 2019 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 Ilch 2.1.22 allows stored XSS via the title, text, or email id to the Jobs Tab.
CVE-2014-1944 1Ilch 1Ilch Cms May 6, 2026 Mar 9, 2014 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in Ilch CMS 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the text parameter to index.php/guestbook/index/newentry.