QiboSoft QiboCMS Sensitive Information Disclosure Vulnerability

Vulnerability

A vulnerability in QiboSoft QiboCMS version X1.0 allows remote attackers to access sensitive information. This issue arises from the http_curl() function in the '/application/common.php' file, which retrieves the content of URL request responses.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

2.5

exploitability

8.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

2.5

exploitability

8.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

QiboSoft QiboCMS Sensitive Information Disclosure Vulnerability

Vulnerability

Impact

Affected Products

QiboSoft QiboCMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating