Lucene search
K

114 matches found

Cvelist
Cvelist
added 2023/09/10 5:53 p.m.30 views

CVE-2023-4879 Cross-site Scripting (XSS) - Stored in instantsoft/icms2

Cross-site Scripting XSS - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1.-git...

3.5CVSS5.2AI score0.00348EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/09/10 5:53 p.m.9 views

CVE-2023-4879 Cross-site Scripting (XSS) - Stored in instantsoft/icms2

Cross-site Scripting XSS - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1.-git...

3.5CVSS6AI score0.00348EPSS
Exploits1References2
CVE
CVE
added 2023/09/10 5:53 p.m.65 views

CVE-2023-4879

CVE-2023-4879 is a stored XSS vulnerability in the GitHub repository for instantsoft/icms2, affecting versions prior to 2.16.1.-git. The Red Hat and other records reiterate the same issue: stored cross-site scripting in icms2 before the 2.16.1.-git release. The PT Security/Huntr entries confirm t...

4.8CVSS4.1AI score0.00348EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/09/10 5:49 p.m.23 views

CVE-2023-4878 Server-Side Request Forgery (SSRF) in instantsoft/icms2

Server-Side Request Forgery SSRF in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

4.3CVSS5.8AI score0.00317EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/09/10 5:49 p.m.12 views

CVE-2023-4878 Server-Side Request Forgery (SSRF) in instantsoft/icms2

Server-Side Request Forgery SSRF in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

4.3CVSS6.9AI score0.00317EPSS
Exploits1References2
OSV
OSV
added 2023/09/10 5:49 p.m.17 views

CVE-2023-4878 Server-Side Request Forgery (SSRF) in instantsoft/icms2

Server-Side Request Forgery SSRF in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

4.3CVSS4.7AI score0.00317EPSS
Exploits1References4
CVE
CVE
added 2023/09/10 5:49 p.m.57 views

CVE-2023-4878

CVE-2023-4878 affects instantsoft/icms2 prior to 2.16.1-git. The issue is a Server-Side Request Forgery (SSRF) vulnerability in the icms2 codebase. Root cause details are not explicitly described beyond SSRF in the provided documents. Impact is that an attacker could cause the server to make unin...

5.4CVSS4.8AI score0.00317EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/10 12:0 a.m.5 views

PT-2023-30961 · Unknown · Instantsoft/Icms2

Name of the Vulnerable Software and Affected Versions: instantsoft/icms2 versions prior to 2.16.1.-git. Description: The issue is related to Cross-site Scripting XSS - Stored, which affects the GitHub repository instantsoft/icms2. Recommendations: For versions prior to 2.16.1.-git, update to...

4.8CVSS3.8AI score0.00348EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2023/09/10 12:0 a.m.6 views

PT-2023-30958 · Unknown · Instantsoft/Icms2

Name of the Vulnerable Software and Affected Versions: instantsoft/icms2 versions prior to 2.16.1-git Description: The issue is related to Server-Side Request Forgery SSRF in the GitHub repository instantsoft/icms2. This allows an attacker to make unauthorized requests on behalf of the server...

5.4CVSS4.5AI score0.00317EPSS
Exploits1References8
NVD
NVD
added 2023/09/01 10:15 a.m.32 views

CVE-2023-4704

External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

8.8CVSS6.1AI score0.00739EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/09/01 9:55 a.m.10 views

CVE-2023-4704 External Control of System or Configuration Setting in instantsoft/icms2

External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

8.8CVSS6.8AI score0.00739EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/09/01 9:55 a.m.37 views

CVE-2023-4704 External Control of System or Configuration Setting in instantsoft/icms2

External Control of System or Configuration Setting in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

8.8CVSS5.4AI score0.00739EPSS
Exploits1References2
CVE
CVE
added 2023/09/01 9:55 a.m.39 views

CVE-2023-4704

CVE-2023-4704 affects instantsoft/icms2 prior to 2.16.1-git, where an External Control of System or Configuration Setting vulnerability exists in the GitHub-hosted project. The Red Hat/NVD entries confirm the issue as an external control of configuration settings, enabling an attacker with networ...

8.8CVSS6.1AI score0.00739EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2023/08/31 1:15 a.m.35 views

CVE-2023-4652

Cross-site Scripting XSS - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

6.8CVSS5.7AI score0.00438EPSS
Exploits1References2
NVD
NVD
added 2023/08/31 1:15 a.m.22 views

CVE-2023-4653

Cross-site Scripting XSS - Stored in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

5.9CVSS5.1AI score0.00426EPSS
Exploits1References2
NVD
NVD
added 2023/08/31 1:15 a.m.25 views

CVE-2023-4655

Cross-site Scripting XSS - Reflected in GitHub repository instantsoft/icms2 prior to 2.16.1...

6.1CVSS4.9AI score0.00408EPSS
Exploits1References2
NVD
NVD
added 2023/08/31 1:15 a.m.24 views

CVE-2023-4651

Server-Side Request Forgery SSRF in GitHub repository instantsoft/icms2 prior to 2.16.1...

6.4CVSS5.8AI score0.00349EPSS
Exploits1References2
NVD
NVD
added 2023/08/31 1:15 a.m.29 views

CVE-2023-4650

Improper Access Control in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

4.7CVSS4.8AI score0.00453EPSS
Exploits1References2
Prion
Prion
added 2023/08/31 1:15 a.m.17 views

Improper access control

Improper Access Control in GitHub repository instantsoft/icms2 prior to 2.16.1-git...

5.8CVSS4.8AI score0.00453EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/08/31 1:15 a.m.16 views

Session fixation

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository instantsoft/icms2 prior to 2.16.1...

2.1CVSS4AI score0.00289EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder