Vulnerabilities > Flatcore > Flatcore CMS > 2.0.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-16 | CVE-2021-41402 | Code Injection vulnerability in Flatcore Flatcore-Cms 2.0.8 flatCore-CMS v2.0.8 has a code execution vulnerability, which could let a remote malicious user execute arbitrary PHP code. | 8.8 |
| 2022-06-15 | CVE-2021-41403 | Server-Side Request Forgery (SSRF) vulnerability in Flatcore Flatcore-Cms 2.0.8 flatCore-CMS version 2.0.8 calls dangerous functions, causing server-side request forgery vulnerabilities. | 9.8 |
| 2022-06-13 | CVE-2021-40902 | Cross-site Scripting vulnerability in Flatcore Flatcore-Cms 2.0.8 flatCore-CMS version 2.0.8 is affected by Cross Site Scripting (XSS) in the "Create New Page" option through the index page. | 5.4 |
| 2021-10-28 | CVE-2021-3745 | Unspecified vulnerability in Flatcore Flatcore-Cms flatcore-cms is vulnerable to Unrestricted Upload of File with Dangerous Type | 6.6 |