CVE-2025-59055 | instantsoft icms2 up to 2.17.3 HTTPS Request package server-side request forgery (GHSA-79hh-mhvg-whrw)

A vulnerability was found in instantsoft icms2 up to 2.17.3. It has been declared as critical. This impacts an unknown function of the component HTTPS Request Handler. Executing manipulation of the argument package can lead to server-side request forgery.

This vulnerability appears as CVE-2025-59055. The attack may be performed from remote. There is no available exploit.

Applying a patch is advised to resolve this issue.VulDB Recent EntriesRead More