| Title | lceCMS lceCMS v 2.0.1 There are logical vulnerabilities present |
|---|
| Description | IceCMS is a pre-Spring Boot + Vue standalone content management system. IceCMS v2.0.1 has a logic defect (concurrency) due to the web application not fully validating the number of user requests. An attacker can send unlimited packets to the /Websquare/likeClickComment/282 interface, which may paralyze the website. |
|---|
| Source | ⚠️ http://x.x.x.x/wenjian/2.html |
|---|
| User | zero121 (UID 59411) |
|---|
| Submission | 12/01/2023 16:45 (3 years ago) |
|---|
| Moderation | 12/01/2023 17:43 (58 minutes later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 246617 [Thecosy IceCMS 2.0.1 Comment Like likeClickComment improper enforcement of a single, unique action] |
|---|
| Points | 18 |
|---|