Acc

Dm Corporative Cms

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2025-40662

  • EPSS 0.04%
  • Veröffentlicht 10.06.2025 10:15:29
  • Zuletzt bearbeitet 22.10.2025 13:33:48

Absolute path disclosure vulnerability in DM Corporative CMS. This vulnerability allows an attacker to view the contents of webroot/file, if navigating to a non-existent file.

9.8

CVE-2025-40657

  • EPSS 0.04%
  • Veröffentlicht 10.06.2025 10:15:28
  • Zuletzt bearbeitet 22.10.2025 14:00:13

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to retrieve, create, update and delete databases through the codform parameter in /modules/forms/collectform.asp.

7.5

CVE-2025-40658

  • EPSS 0.04%
  • Veröffentlicht 10.06.2025 10:15:28
  • Zuletzt bearbeitet 22.10.2025 13:56:16

An Insecure Direct Object Reference (IDOR) vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to access the private area setting the option parameter equal to 0, 1 or 2 in /administer/selectionnode/framesSelecti...

7.5

CVE-2025-40659

  • EPSS 0.04%
  • Veröffentlicht 10.06.2025 10:15:28
  • Zuletzt bearbeitet 22.10.2025 13:53:46

An Insecure Direct Object Reference (IDOR) vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to access the private area setting the option parameter equal to 0, 1 or 2 in /administer/selectionnode/framesSelecti...

7.5

CVE-2025-40660

  • EPSS 0.04%
  • Veröffentlicht 10.06.2025 10:15:28
  • Zuletzt bearbeitet 22.10.2025 13:53:05

An Insecure Direct Object Reference (IDOR) vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to access the private area setting the option parameter equal to 0, 1 or 2 in /administer/select node/data.asp?mode=c...

7.5

CVE-2025-40661

  • EPSS 0.04%
  • Veröffentlicht 10.06.2025 10:15:28
  • Zuletzt bearbeitet 22.10.2025 13:43:56

An Insecure Direct Object Reference (IDOR) vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to access the private area setting the option parameter equal to 0, 1 or 2 in /administer/selectionnode/selection.asp...

9.8

CVE-2025-40655

  • EPSS 0.04%
  • Veröffentlicht 10.06.2025 10:15:27
  • Zuletzt bearbeitet 23.10.2025 14:06:08

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to retrieve, create, update and delete databases through the name parameter in /antcatalogue.asp.

9.8

CVE-2025-40656

  • EPSS 0.04%
  • Veröffentlicht 10.06.2025 10:15:27
  • Zuletzt bearbeitet 23.10.2025 13:58:48

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to retrieve, create, update and delete databases through the cod parameter in /administer/node-selection/data.asp.

9.8

CVE-2025-40654

  • EPSS 0.04%
  • Veröffentlicht 10.06.2025 10:15:26
  • Zuletzt bearbeitet 23.10.2025 14:17:22

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to retrieve, create, update and delete databases through the name and cod parameters in /antbuspre.asp.