Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
instantsoft instantcms vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2013-6839
SQL injection vulnerability in InstantSoft InstantCMS 1.10.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the orderby parameter to catalog/[id].
Instantsoft Instantcms
1 EDB exploit
NA
CVE-2023-4649
Session Fixation in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
NA
CVE-2023-4188
SQL Injection in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4381
Unverified Password Change in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4650
Improper Access Control in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4651
Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
NA
CVE-2023-4655
Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
NA
CVE-2023-4878
Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4879
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 before 2.16.1.-git.
Instantcms Instantcms
NA
CVE-2023-4189
Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »