idccms CVE Vulnerabilities & Metrics

Focus on idccms vulnerabilities and metrics.

Last updated: 16 Apr 2025, 22:25 UTC

About idccms Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with idccms. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total idccms CVEs: 50
Earliest CVE date: 06 May 2024, 13:15 UTC
Latest CVE date: 10 Jul 2024, 14:15 UTC

Latest CVE reference: CVE-2024-40336

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 50

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical idccms CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 0.0

Max CVSS: 0

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	50
4.0-6.9	0
7.0-8.9	0
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS idccms CVEs

These are the five CVEs with the highest CVSS scores for idccms, sorted by severity first and recency.

CVE-2024-40336 idccms Published on 10 Jul 2024, 14:15 UTC (CVSS: 0)
idccms v1.35 is vulnerable to Cross Site Scripting (XSS) within the 'Image Advertising Management.'
CVE-2024-40332 idccms Published on 10 Jul 2024, 14:15 UTC (CVSS: 0)
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/moneyRecord_deal.php?mudi=delRecord
CVE-2024-40331 idccms Published on 10 Jul 2024, 14:15 UTC (CVSS: 0)
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/dbBakMySQL_deal.php?mudi=backup
CVE-2024-40334 idccms Published on 10 Jul 2024, 13:15 UTC (CVSS: 0)
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/serverFile_deal.php?mudi=upFileDel&dataID=3
CVE-2024-40333 idccms Published on 10 Jul 2024, 13:15 UTC (CVSS: 0)
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=del&dataID=2

All CVEs for idccms

CVE-2024-40336 idccms vulnerability CVSS: 0 10 Jul 2024, 14:15 UTC

idccms v1.35 is vulnerable to Cross Site Scripting (XSS) within the 'Image Advertising Management.'

CVE-2024-40332 idccms vulnerability CVSS: 0 10 Jul 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/moneyRecord_deal.php?mudi=delRecord

CVE-2024-40331 idccms vulnerability CVSS: 0 10 Jul 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/dbBakMySQL_deal.php?mudi=backup

CVE-2024-40334 idccms vulnerability CVSS: 0 10 Jul 2024, 13:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/serverFile_deal.php?mudi=upFileDel&dataID=3

CVE-2024-40333 idccms vulnerability CVSS: 0 10 Jul 2024, 13:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=del&dataID=2

CVE-2024-40329 idccms vulnerability CVSS: 0 10 Jul 2024, 13:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=backup

CVE-2024-40328 idccms vulnerability CVSS: 0 10 Jul 2024, 13:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/memberOnline_deal.php?mudi=del&dataType=&dataID=6

CVE-2024-40038 idccms vulnerability CVSS: 0 09 Jul 2024, 19:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userScore_deal.php?mudi=rev

CVE-2024-40036 idccms vulnerability CVSS: 0 09 Jul 2024, 19:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userGroup_deal.php?mudi=add&nohrefStr=close

CVE-2024-40035 idccms vulnerability CVSS: 0 09 Jul 2024, 19:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userLevel_deal.php?mudi=add.

CVE-2024-39023 idccms vulnerability CVSS: 0 05 Jul 2024, 19:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via admin/info_deal.php?mudi=add&nohrefStr=close

CVE-2024-39022 idccms vulnerability CVSS: 0 05 Jul 2024, 19:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/infoSys_deal.php?mudi=deal

CVE-2024-39021 idccms vulnerability CVSS: 0 05 Jul 2024, 19:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/vpsApiData_deal.php?mudi=del

CVE-2024-39020 idccms vulnerability CVSS: 0 05 Jul 2024, 19:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/vpsApiData_deal.php?mudi=rev&nohrefStr=close

CVE-2024-39019 idccms vulnerability CVSS: 0 05 Jul 2024, 19:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/idcProData_deal.php?mudi=del

CVE-2024-39119 idccms vulnerability CVSS: 0 02 Jul 2024, 13:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/info_deal.php?mudi=rev&nohrefStr=close.

CVE-2024-39158 idccms vulnerability CVSS: 0 27 Jun 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/userSys_deal.php?mudi=infoSet.

CVE-2024-39157 idccms vulnerability CVSS: 0 27 Jun 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/ipRecord_deal.php?mudi=del&dataType=&dataID=1.

CVE-2024-39156 idccms vulnerability CVSS: 0 27 Jun 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/keyWord_deal.php?mudi=add.

CVE-2024-39155 idccms vulnerability CVSS: 0 27 Jun 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/ipRecord_deal.php?mudi=add.

CVE-2024-39154 idccms vulnerability CVSS: 0 27 Jun 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/keyWord_deal.php?mudi=del&dataType=word&dataTypeCN.

CVE-2024-39153 idccms vulnerability CVSS: 0 27 Jun 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/info_deal.php?mudi=del&dataType=news&dataTypeCN.

CVE-2024-36670 idccms vulnerability CVSS: 0 05 Jun 2024, 19:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/vpsClass_deal.php?mudi=del

CVE-2024-36550 idccms vulnerability CVSS: 0 04 Jun 2024, 15:15 UTC

idccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/vpsCompany_deal.php?mudi=add&nohrefStr=close

CVE-2024-36549 idccms vulnerability CVSS: 0 04 Jun 2024, 15:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/vpsCompany_deal.php?mudi=rev&nohrefStr=close

CVE-2024-36548 idccms vulnerability CVSS: 0 04 Jun 2024, 15:15 UTC

idccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/vpsCompany_deal.php?mudi=del

CVE-2024-36547 idccms vulnerability CVSS: 0 04 Jun 2024, 15:15 UTC

idccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/vpsClass_deal.php?mudi=add

CVE-2024-35561 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/ca_deal.php?mudi=add&nohrefStr=close.

CVE-2024-35560 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/ca_deal.php?mudi=del&dataType=&dataTypeCN.

CVE-2024-35559 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoMove_deal.php?mudi=rev&nohrefStr=close.

CVE-2024-35558 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/ca_deal.php?mudi=rev&nohrefStr=close.

CVE-2024-35557 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/vpsApi_deal.php?mudi=rev&nohrefStr=close.

CVE-2024-35556 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/vpsSys_deal.php?mudi=infoSet.

CVE-2024-35555 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/share_switch.php?mudi=switch&dataType=newsWeb&fieldName=state&fieldName2=state&tabName=infoWeb&dataID=40.

CVE-2024-35554 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoWeb_deal.php?mudi=del&dataType=newsWeb&dataTypeCN.

CVE-2024-35553 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoMove_deal.php?mudi=add&nohrefStr=close.

CVE-2024-35552 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoMove_deal.php?mudi=del&dataType=logo&dataTypeCN.

CVE-2024-35551 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoWeb_deal.php?mudi=add.

CVE-2024-35550 idccms vulnerability CVSS: 0 22 May 2024, 14:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoWeb_deal.php?mudi=rev.

CVE-2024-35039 idccms vulnerability CVSS: 0 16 May 2024, 15:15 UTC

idccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/tplSys_deal.php?mudi=area.

CVE-2024-34958 idccms vulnerability CVSS: 0 16 May 2024, 15:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/banner_deal.php?mudi=add

CVE-2024-34957 idccms vulnerability CVSS: 0 16 May 2024, 15:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/sysImages_deal.php?mudi=infoSet.

CVE-2024-35109 idccms vulnerability CVSS: 0 15 May 2024, 02:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /homePro_deal.php?mudi=add&nohrefStr=close.

CVE-2024-35108 idccms vulnerability CVSS: 0 15 May 2024, 02:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/homePro_deal.php?mudi=del&dataType=&dataTypeCN.

CVE-2024-35012 idccms vulnerability CVSS: 0 14 May 2024, 16:17 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoType_deal.php?mudi=add&nohrefStr=close.

CVE-2024-35011 idccms vulnerability CVSS: 0 14 May 2024, 16:17 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoType_deal.php?mudi=rev&nohrefStr=close.

CVE-2024-35010 idccms vulnerability CVSS: 0 14 May 2024, 16:17 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/banner_deal.php?mudi=del&dataType=&dataTypeCN=%E5%9B%BE%E7%89%87%E5%B9%BF%E5%91%8A&theme=cs&dataID=6.

CVE-2024-35009 idccms vulnerability CVSS: 0 14 May 2024, 16:17 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/share_switch.php?mudi=switch&dataType=&fieldName=state&fieldName2=state&tabName=banner&dataID=6.

CVE-2024-33830 idccms vulnerability CVSS: 0 06 May 2024, 13:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/readDeal.php?mudi=clearWebCache.

CVE-2024-33829 idccms vulnerability CVSS: 0 06 May 2024, 13:15 UTC

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/readDeal.php?mudi=updateWebCache.