Vulnerabilidades en instantsoft
20 resultadosCVE-2024-31212MEDIUMSQL injection in index_chart_data actionEPSS 0.9%CVE-2023-4188CRITICALSQL Injection in instantsoft/icms2EPSS 0.8%CVE-2023-4704HIGHExternal Control of System or Configuration Setting in instantsoft/icms2EPSS 0.7%CVE-2023-4928HIGHSQL Injection in instantsoft/icms2EPSS 0.7%CVE-2023-4650MEDIUMImproper Access Control in instantsoft/icms2EPSS 0.5%CVE-2023-4652MEDIUMCross-site Scripting (XSS) - Stored in instantsoft/icms2EPSS 0.4%CVE-2023-4653MEDIUMCross-site Scripting (XSS) - Stored in instantsoft/icms2EPSS 0.4%CVE-2025-59055MEDIUMInstantCMS vulnerable to Server-Side Request Forgery via package installerEPSS 0.4%CVE-2023-4187LOWCross-site Scripting (XSS) - Stored in instantsoft/icms2EPSS 0.4%CVE-2023-4189MEDIUMCross-site Scripting (XSS) - Reflected in instantsoft/icms2EPSS 0.4%CVE-2023-4655MEDIUMCross-site Scripting (XSS) - Reflected in instantsoft/icms2EPSS 0.4%CVE-2024-31213LOWInstantCMS Open Redirect vulnerabilityEPSS 0.4%CVE-2023-4649MEDIUMSession Fixation in instantsoft/icms2EPSS 0.4%CVE-2023-4381MEDIUMUnverified Password Change in instantsoft/icms2EPSS 0.4%CVE-2023-4651MEDIUMServer-Side Request Forgery (SSRF) in instantsoft/icms2EPSS 0.3%CVE-2023-4879LOWCross-site Scripting (XSS) - Stored in instantsoft/icms2EPSS 0.3%CVE-2024-50348MEDIUMInstantCMS has a Cross Site Scripting VulnerabilityEPSS 0.3%CVE-2023-4878MEDIUMServer-Side Request Forgery (SSRF) in instantsoft/icms2EPSS 0.3%CVE-2023-4654LOWSensitive Cookie in HTTPS Session Without 'Secure' Attribute in instantsoft/icms2EPSS 0.3%CVE-2026-28281HIGHInstantCMS has Multiple CSRF VulnerabilitiesEPSS 0.1%