What the vulnerability does
01Description
SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1.
CVSS base score
7.2/10
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Key dates
02Disclosure timeline
September 13, 2023
CVE published
September 25, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-11713 WP Job Portal <= 2.2.2 - Authenticated (Admin+) SQL Injection via wpjobportal_deactivate()
CVE-2025-7838 Campcodes Online Movie Theater Seat Reservation System manage_seat.php sql injection
CVE-2025-6310 PHPGurukul Emergency Ambulance Hiring Portal index.php sql injection
CVE-2025-11357 code-projects Simple Banking System createuser.php sql injection
CVE-2025-15353 itsourcecode Society Management System edit_admin_query.php edit_admin_query sql injection
