High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-15	CVE-2021-41403	Server-Side Request Forgery (SSRF) vulnerability in Flatcore Flatcore-Cms 2.0.8 flatCore-CMS version 2.0.8 calls dangerous functions, causing server-side request forgery vulnerabilities. network low complexity flatcore CWE-918	7.5
2017-04-14	CVE-2017-7878	SQL Injection vulnerability in Flatcore Flatcore-Cms 1.4.6 SQL Injection vulnerability in flatCore version 1.4.6 allows an attacker to read and write to the users database. network low complexity flatcore CWE-89	7.5