icms2 — Vulnerabilities & Security Advisories 5

All 5 CVE vulnerabilities found in icms2, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-28281	InstantCMS has Multiple CSRF Vulnerabilities CWE-352	7.1	High	2026-03-09
CVE-2025-59055	InstantCMS vulnerable to Server-Side Request Forgery via package installer CWE-918	4.7	Medium	2025-09-11
CVE-2024-50348	InstantCMS has a Cross Site Scripting Vulnerability CWE-79	5.4	Medium	2024-10-29
CVE-2024-31213	InstantCMS Open Redirect vulnerability CWE-601	3.5	Low	2024-04-05
CVE-2024-31212	SQL injection in index_chart_data action CWE-89	6.7	Medium	2024-04-04

All 5 known CVE vulnerabilities affecting icms2 with full Chinese analysis, references, and POCs where available.