Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
instantsoft vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-6839
SQL injection vulnerability in InstantSoft InstantCMS 1.10.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the orderby parameter to catalog/[id].
Instantsoft Instantcms
1 EDB exploit
5.4
CVSSv3
CVE-2023-4649
Session Fixation in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
7.2
CVSSv3
CVE-2023-4928
SQL Injection in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Icms2
9.1
CVSSv3
CVE-2023-4188
SQL Injection in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
4.7
CVSSv3
CVE-2023-4650
Improper Access Control in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
4.3
CVSSv3
CVE-2023-4381
Unverified Password Change in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
5.4
CVSSv3
CVE-2023-4651
Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
6.1
CVSSv3
CVE-2023-4655
Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
4.8
CVSSv3
CVE-2023-4189
Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
5.4
CVSSv3
CVE-2023-4652
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »