Vulnerabilities > Flatcore > High

DATE CVE VULNERABILITY TITLE RISK
2022-06-15 CVE-2021-41403 Server-Side Request Forgery (SSRF) vulnerability in Flatcore Flatcore-Cms 2.0.8
flatCore-CMS version 2.0.8 calls dangerous functions, causing server-side request forgery vulnerabilities.
network
low complexity
flatcore CWE-918
7.5
7.5
2017-04-14 CVE-2017-7878 SQL Injection vulnerability in Flatcore Flatcore-Cms 1.4.6
SQL Injection vulnerability in flatCore version 1.4.6 allows an attacker to read and write to the users database.
network
low complexity
flatcore CWE-89
7.5
7.5