CVE-2026-28281 | instantsoft icms2 up to 2.18.0 cross-site request forgery

Inserito da Angelo Barbosa | Mar 9, 2026 | CVE

A vulnerability was found in instantsoft icms2 up to 2.18.0. It has been rated as problematic. The impacted element is an unknown function. The manipulation leads to cross-site request forgery.

This vulnerability is referenced as CVE-2026-28281. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.

CVE-2026-28281 | instantsoft icms2 up to 2.18.0 cross-site request forgery

Post correlati

CVE-2022-49073 | Linux Kernel up to 5.17.2 on OpenWrt sata_dwc_dma_xfer_complete tag null pointer dereference (ID 9505)

CVE-2024-57964 | Hitachi HVAC Energy Saving Program uncontrolled search path

CVE-2023-53984 | Clevo HotKey Clipboard 2.1.0.6 HKClipSvc Service unquoted search path (Exploit 51206 / EDB-51206)

CVE-2023-40300 | NetScout nGeniusPULSE 3.8 hard-coded key