icms2
by GitHub
CVEs (13)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-4928 | Hig | 0.00 | 7.2 | 0.01 | Sep 13, 2023 | SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1. | ||
| CVE-2023-4879 | Med | 0.00 | 4.8 | 0.00 | Sep 10, 2023 | Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1.-git. | ||
| CVE-2023-4704 | Med | 0.00 | 4.9 | 0.01 | Sep 1, 2023 | External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | ||
| CVE-2023-4655 | Med | 0.00 | 6.1 | 0.00 | Aug 31, 2023 | Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1. | ||
| CVE-2023-4654 | Low | 0.00 | 3.5 | 0.00 | Aug 31, 2023 | Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository instantsoft/icms2 prior to 2.16.1. | ||
| CVE-2023-4653 | Med | 0.00 | 4.8 | 0.00 | Aug 31, 2023 | Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | ||
| CVE-2023-4652 | Med | 0.00 | 5.4 | 0.00 | Aug 31, 2023 | Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | ||
| CVE-2023-4650 | Med | 0.00 | 4.7 | 0.00 | Aug 31, 2023 | Improper Access Control in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | ||
| CVE-2023-4649 | Med | 0.00 | 5.4 | 0.00 | Aug 31, 2023 | Session Fixation in GitHub repository instantsoft/icms2 prior to 2.16.1. | ||
| CVE-2023-4381 | Med | 0.00 | 4.3 | 0.00 | Aug 16, 2023 | Unverified Password Change in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | ||
| CVE-2023-4189 | Med | 0.00 | 4.8 | 0.00 | Aug 5, 2023 | Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | ||
| CVE-2023-4188 | Cri | 0.00 | 9.1 | 0.01 | Aug 5, 2023 | SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1-git. | ||
| CVE-2023-4187 | Med | 0.00 | 4.8 | 0.00 | Aug 5, 2023 | Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git. |
- risk 0.00cvss 7.2epss 0.01
SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1.
- risk 0.00cvss 4.8epss 0.00
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1.-git.
- risk 0.00cvss 4.9epss 0.01
External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
- risk 0.00cvss 6.1epss 0.00
Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1.
- risk 0.00cvss 3.5epss 0.00
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository instantsoft/icms2 prior to 2.16.1.
- risk 0.00cvss 4.8epss 0.00
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
- risk 0.00cvss 5.4epss 0.00
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
- risk 0.00cvss 4.7epss 0.00
Improper Access Control in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
- risk 0.00cvss 5.4epss 0.00
Session Fixation in GitHub repository instantsoft/icms2 prior to 2.16.1.
- risk 0.00cvss 4.3epss 0.00
Unverified Password Change in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
- risk 0.00cvss 4.8epss 0.00
Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
- risk 0.00cvss 9.1epss 0.01
SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1-git.
- risk 0.00cvss 4.8epss 0.00
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git.