pkg:Packagist/october/cms

8 total CVEsHIGH2MEDIUM5LOW1

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2020-15246Local File Inclusion by unauthenticated users
    >= 1.0.421, < 1.0.469
  • HIGH7.2CVE-2017-1000119October CMS PHP Code Execution
    from 0, <= 1.0.412
  • MEDIUM6.2CVE-2020-5296Arbitrary File Deletion vulnerability in OctoberCMS
    >= 1.0.319, < 1.0.466
  • MEDIUM5.2CVE-2021-21264Bypass of fix for CVE-2020-26231, Twig sandbox escape
    >= 1.0.471, < 1.0.472
  • MEDIUM5.2CVE-2020-26231Bypass of fix for CVE-2020-15247, Twig sandbox escape
    >= 1.0.469, < 1.0.470
  • MEDIUM5.2CVE-2020-15247Twig Sandbox Escape by authenticated users with access to editing CMS templates when safemode is enabled.
    >= 1.0.319, < 1.0.469
  • MEDIUM4.8CVE-2020-5295Local File read vulnerability in OctoberCMS
    >= 1.0.319, < 1.0.466
  • LOW3.4CVE-2020-5297Upload whitelisted files to any directory in OctoberCMS
    >= 1.0.319, < 1.0.466
Packagist/october/cms — 8 CVEs · VulnScope