Show filters
19 Total Results
Displaying 11-19 of 19
Sort by:
Attacker Value
Unknown
CVE-2023-4651
Disclosure Date: August 31, 2023 (last updated October 08, 2023)
Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 prior to 2.16.1.
0
Attacker Value
Unknown
CVE-2023-4650
Disclosure Date: August 31, 2023 (last updated October 08, 2023)
Improper Access Control in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
0
Attacker Value
Unknown
CVE-2023-4649
Disclosure Date: August 31, 2023 (last updated October 08, 2023)
Session Fixation in GitHub repository instantsoft/icms2 prior to 2.16.1.
0
Attacker Value
Unknown
CVE-2023-4381
Disclosure Date: August 16, 2023 (last updated October 08, 2023)
Unverified Password Change in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
0
Attacker Value
Unknown
CVE-2023-4189
Disclosure Date: August 05, 2023 (last updated October 08, 2023)
Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
0
Attacker Value
Unknown
CVE-2023-4188
Disclosure Date: August 05, 2023 (last updated October 08, 2023)
SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
0
Attacker Value
Unknown
CVE-2023-4187
Disclosure Date: August 05, 2023 (last updated October 08, 2023)
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
0
Attacker Value
Unknown
CVE-2018-14382
Disclosure Date: July 18, 2018 (last updated November 27, 2024)
InstantCMS 2.10.1 has /redirect?url= XSS.
0
Attacker Value
Unknown
CVE-2013-6839
Disclosure Date: December 13, 2013 (last updated October 05, 2023)
SQL injection vulnerability in InstantSoft InstantCMS 1.10.3 and earlier allows remote attackers to execute arbitrary SQL commands via the orderby parameter to catalog/[id].
0
