All 10 CVE vulnerabilities found in IceCMS, with AI-generated Chinese analysis, references, and POCs.
Vendor: Thecosy
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-6762 | Thecosy IceCMS Article permission CWE-275 | 5.4 | Medium | 2023-12-13 |
| CVE-2023-6761 | Thecosy IceCMS User Data access control CWE-284 | 4.3 | Medium | 2023-12-13 |
| CVE-2023-6760 | Thecosy IceCMS user session CWE-1018 | 6.3 | Medium | 2023-12-13 |
| CVE-2023-6759 | Thecosy IceCMS Love resource improper enforcement of a single, unique action CWE-837 | 5.3 | Medium | 2023-12-13 |
| CVE-2023-6758 | Thecosy IceCMS API PlanetCommentList access control CWE-284 | 5.3 | Medium | 2023-12-13 |
| CVE-2023-6757 | Thecosy IceCMS API PlanetUser information disclosure CWE-200 | 5.3 | Medium | 2023-12-13 |
| CVE-2023-6756 | Thecosy IceCMS Captcha login excessive authentication CWE-307 | 5.3 | Medium | 2023-12-13 |
| CVE-2023-6467 | Thecosy IceCMS Comment Like improper enforcement of a single, unique action CWE-837 | 3.1 | Low | 2023-12-02 |
| CVE-2023-6466 | Thecosy IceCMS User Comment planet cross site scripting CWE-79 | 3.5 | Low | 2023-12-02 |
| CVE-2023-6438 | Thecosy IceCMS Like improper enforcement of a single, unique action CWE-837 | 4.3 | Medium | 2023-11-30 |
All 10 known CVE vulnerabilities affecting IceCMS with full Chinese analysis, references, and POCs where available.