CVE-2021-3832 — CVSS 9.8 (critical): Integria IMS in its 5.0.92 version is vulnerable to a Remote Code Execution attack through file uploading. An unauthenticated attacker…
CVE-2021-3833 — CVSS 9.8 (critical): Integria IMS login check uses a loose comparator ("==") to compare the MD5 hash of the password provided by the user and the MD5 hash…
CVE-2018-1000812 — CVSS 8.1 (high): Artica Integria IMS version 5.0 MR56 Package 58, likely earlier versions contains a CWE-640: Weak Password Recovery Mechanism for Forgotten…
CVE-2018-19829 — CVSS 6.5 (medium): Artica Integria IMS 5.0.83 has CSRF in godmode/usuarios/lista_usuarios, resulting in the ability to delete an arbitrary user when the ID…
CVE-2021-3834 — CVSS 5.4 (medium): Integria IMS in its 5.0.92 version does not filter correctly some fields related to the login.php file. An attacker could exploit this…