Known Vulnerabilities for products from Ilch
Listed below are 8 of the newest known vulnerabilities associated with the vendor "Ilch".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-27352 json | An open redirect vulnerability in Ilch CMS version 2.1.42 allows attackers to redirect users to an attacker's site after a su... | 5.4 - MEDIUM | 2021-03-29 | 2021-06-03 |
| CVE-2019-20524 json | ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter. | 6.1 - MEDIUM | 2020-03-19 | 2020-03-19 |
| CVE-2019-20523 json | ilchCMS 2.1.23 allows XSS via the index.php/partner/index Name parameter. | 6.1 - MEDIUM | 2020-03-19 | 2020-03-19 |
| CVE-2019-20522 json | ilchCMS 2.1.23 allows XSS via the index.php/partner/index Link parameter. | 6.1 - MEDIUM | 2020-03-19 | 2020-03-19 |
| CVE-2019-17046 json | Ilch 2.1.22 allows remote code execution because php is listed under "Allowed files" on the index.php/admin/media/settings/in... | 7.2 - HIGH | 2019-09-30 | 2019-10-04 |
| CVE-2019-17045 json | Ilch 2.1.22 allows stored XSS via the title, text, or email id to the Jobs Tab. | 4.8 - MEDIUM | 2019-09-30 | 2019-10-03 |
| CVE-2015-2083 json | Cross-site request forgery (CSRF) vulnerability in Ilch CMS allows remote attackers to hijack the authentication of administr... | Not Provided | 2015-02-25 | 2026-05-06 |
| CVE-2014-1944 json | Cross-site scripting (XSS) vulnerability in Ilch CMS 2.0 and earlier allows remote attackers to inject arbitrary web script o... | Not Provided | 2014-03-09 | 2026-05-06 |