Aggregates CVE and security vulnerability intelligence across all flatcore-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk csrf, vendor risk ssrf, vendor risk path handling, and vendor risk input validation, with potential vendor impact data exposure across vendor surface production workloads use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-7879 | SQL Injection vulnerability in flatCore version 1.4.6 allows an attacker to read the content database. | [email protected] | 7.5 | 1.03% | 2017-04-14 | 2026-06-17 |
| CVE-2017-7878 | SQL Injection vulnerability in flatCore version 1.4.6 allows an attacker to read and write to the users database. | [email protected] | 9.8 | 1.02% | 2017-04-14 | 2026-06-17 |
| CVE-2017-7877 | CSRF vulnerability in flatCore version 1.4.6 allows remote attackers to modify CMS configurations. | [email protected] | 8.8 | 0.91% | 2017-04-14 | 2026-06-17 |