Known Vulnerabilities for Integria Ims by Artica

Listed below are 7 of the newest known vulnerabilities associated with "Integria Ims" by "Artica".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2021-3834 json	Integria IMS in its 5.0.92 version does not filter correctly some fields related to the login.php file. An attacker could exp...	6.1 - MEDIUM	2021-10-07	2023-11-20
CVE-2021-3833 json	Integria IMS login check uses a loose comparator ("==") to compare the MD5 hash of the password provided by the user and the ...	9.8 - CRITICAL	2021-10-07	2023-11-20
CVE-2021-3832 json	Integria IMS in its 5.0.92 version is vulnerable to a Remote Code Execution attack through file uploading. An unauthenticated...	9.8 - CRITICAL	2021-10-07	2021-10-15
CVE-2019-15091 json	filemgr.php in Artica Integria IMS 5.0.86 allows index.php?sec=wiki&sec2=operation/wiki/wiki&action=upload arbitrary file upl...	9.8 - CRITICAL	2019-08-16	2019-08-27
CVE-2018-1000812 json	Artica Integria IMS version 5.0 MR56 Package 58, likely earlier versions contains a CWE-640: Weak Password Recovery Mechanism...	8.1 - HIGH	2018-12-20	2019-08-16
CVE-2018-19829 json	Artica Integria IMS 5.0.83 has CSRF in godmode/usuarios/lista_usuarios, resulting in the ability to delete an arbitrary user ...	6.5 - MEDIUM	2018-12-18	2019-01-30
CVE-2018-19828 json	Artica Integria IMS 5.0.83 has XSS via the search_string parameter.	6.1 - MEDIUM	2018-12-17	2019-01-04

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Artica	Integria Ims	5.0.83