Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
instantsoft instantcms vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2013-6839
SQL injection vulnerability in InstantSoft InstantCMS 1.10.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the orderby parameter to catalog/[id].
Instantsoft Instantcms
1 EDB exploit
NA
CVE-2023-4649
Session Fixation in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
NA
CVE-2023-4188
SQL Injection in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4650
Improper Access Control in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4381
Unverified Password Change in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4651
Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
NA
CVE-2023-4655
Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
NA
CVE-2023-4652
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4653
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4187
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »