Vulnerabilities > Instantcms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-29 | CVE-2024-50348 | Cross-site Scripting vulnerability in Instantcms InstantCMS is a free and open source content management system. | 5.4 |
| 2023-09-13 | CVE-2023-4928 | Unspecified vulnerability in Instantcms Icms2 SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1. | 7.2 |
| 2023-09-10 | CVE-2023-4878 | Unspecified vulnerability in Instantcms Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | 5.4 |
| 2023-09-10 | CVE-2023-4879 | Unspecified vulnerability in Instantcms Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1.-git. | 4.8 |
| 2023-09-01 | CVE-2023-4704 | Externally Controlled Reference to a Resource in Another Sphere vulnerability in Instantcms External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | 4.9 |
| 2023-08-31 | CVE-2023-4649 | Unspecified vulnerability in Instantcms Session Fixation in GitHub repository instantsoft/icms2 prior to 2.16.1. | 5.4 |
| 2023-08-31 | CVE-2023-4650 | Unspecified vulnerability in Instantcms Improper Access Control in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | 4.7 |
| 2023-08-31 | CVE-2023-4651 | Unspecified vulnerability in Instantcms Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 prior to 2.16.1. | 5.4 |
| 2023-08-31 | CVE-2023-4652 | Unspecified vulnerability in Instantcms Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | 5.4 |
| 2023-08-31 | CVE-2023-4653 | Unspecified vulnerability in Instantcms Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | 4.8 |