Filtered by vendor Instantcms
Subscribe
Total
16 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-4654 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 3.5 LOW |
| Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository instantsoft/icms2 prior to 2.16.1. | |||||
| CVE-2023-4649 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 5.4 MEDIUM |
| Session Fixation in GitHub repository instantsoft/icms2 prior to 2.16.1. | |||||
| CVE-2023-4879 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 4.8 MEDIUM |
| Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1.-git. | |||||
| CVE-2023-4188 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 9.1 CRITICAL |
| SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | |||||
| CVE-2023-4650 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 4.7 MEDIUM |
| Improper Access Control in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | |||||
| CVE-2023-4189 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 4.8 MEDIUM |
| Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | |||||
| CVE-2023-4652 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 5.4 MEDIUM |
| Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | |||||
| CVE-2023-4651 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 5.4 MEDIUM |
| Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 prior to 2.16.1. | |||||
| CVE-2023-4653 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 4.8 MEDIUM |
| Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | |||||
| CVE-2023-4381 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 4.3 MEDIUM |
| Unverified Password Change in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | |||||
| CVE-2023-4928 | 1 Instantcms | 1 Icms2 | 2024-02-28 | N/A | 7.2 HIGH |
| SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1. | |||||
| CVE-2023-4704 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 4.9 MEDIUM |
| External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | |||||
| CVE-2023-4655 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 6.1 MEDIUM |
| Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1. | |||||
| CVE-2023-4187 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 4.8 MEDIUM |
| Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | |||||
| CVE-2023-4878 | 1 Instantcms | 1 Instantcms | 2024-02-28 | N/A | 5.4 MEDIUM |
| Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | |||||
| CVE-2018-14382 | 1 Instantcms | 1 Instantcms | 2024-02-28 | 4.3 MEDIUM | 6.1 MEDIUM |
| InstantCMS 2.10.1 has /redirect?url= XSS. | |||||