Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up
instantsoft

instantsoft/icms2

1 Version 15 CVEs

Versions

unspecified

OTHER 15 CVEs

Recent CVEs

CVE-2023-4928

SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1.

HIGH Sep 13, 2023

CVE-2023-4704

External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git.

HIGH Sep 01, 2023

CVE-2023-4654

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository instantsoft/icms2 prior to 2.16.1.

LOW Aug 31, 2023

CVE-2023-4655

Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1.

MEDIUM Aug 31, 2023

CVE-2023-4650

Improper Access Control in GitHub repository instantsoft/icms2 prior to 2.16.1-git.

MEDIUM Aug 31, 2023

CVE-2023-4649

Session Fixation in GitHub repository instantsoft/icms2 prior to 2.16.1.

MEDIUM Aug 31, 2023

CVE-2023-4653

Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git.

MEDIUM Aug 31, 2023

CVE-2023-4652

Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git.

MEDIUM Aug 31, 2023

CVE-2023-4381

Unverified Password Change in GitHub repository instantsoft/icms2 prior to 2.16.1-git.

MEDIUM Aug 16, 2023

CVE-2023-4187

Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git.

LOW Aug 05, 2023