Vulnerabilities > Instantcms

DATE CVE VULNERABILITY TITLE RISK
2024-10-29 CVE-2024-50348 Cross-site Scripting vulnerability in Instantcms
InstantCMS is a free and open source content management system.
network
low complexity
instantcms CWE-79
5.4
2023-09-13 CVE-2023-4928 SQL Injection vulnerability in Instantcms Icms2
SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1.
network
low complexity
instantcms CWE-89
7.2
2023-09-10 CVE-2023-4878 Server-Side Request Forgery (SSRF) vulnerability in Instantcms
Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
network
low complexity
instantcms CWE-918
5.4
2023-09-10 CVE-2023-4879 Cross-site Scripting vulnerability in Instantcms
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1.-git.
network
low complexity
instantcms CWE-79
4.8
2023-09-01 CVE-2023-4704 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Instantcms
External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
network
low complexity
instantcms CWE-610
4.9
2023-08-31 CVE-2023-4649 Session Fixation vulnerability in Instantcms
Session Fixation in GitHub repository instantsoft/icms2 prior to 2.16.1.
network
low complexity
instantcms CWE-384
5.4
2023-08-31 CVE-2023-4650 Improper Access Control vulnerability in Instantcms
Improper Access Control in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
network
low complexity
instantcms CWE-284
4.7
2023-08-31 CVE-2023-4651 Server-Side Request Forgery (SSRF) vulnerability in Instantcms
Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 prior to 2.16.1.
network
low complexity
instantcms CWE-918
5.4
2023-08-31 CVE-2023-4652 Cross-site Scripting vulnerability in Instantcms
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
network
low complexity
instantcms CWE-79
5.4
2023-08-31 CVE-2023-4653 Cross-site Scripting vulnerability in Instantcms
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
network
low complexity
instantcms CWE-79
4.8