| Titolo | lceCMS lceCMS v 2.0.1 There are logical vulnerabilities present |
|---|
| Descrizione | IceCMS is a pre-Spring Boot + Vue standalone content management system. IceCMS v2.0.1 has a logic defect (concurrency) due to the web application not fully validating the number of user requests. An attacker can send unlimited packets to the /Websquare/likeClickComment/282 interface, which may paralyze the website. |
|---|
| Fonte | ⚠️ http://x.x.x.x/wenjian/2.html |
|---|
| Utente | zero121 (UID 59411) |
|---|
| Sottomissione | 01/12/2023 16:45 (3 anni fa) |
|---|
| Moderazione | 01/12/2023 17:43 (58 minutes later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 246617 [Thecosy IceCMS 2.0.1 Comment Like likeClickComment] |
|---|
| Punti | 18 |
|---|