pkg:Packagist/october/backend

共 7 筆 CVEMEDIUM3LOW3

✅ 檢查你的版本

所有已知漏洞

  • MEDIUM4.0CVE-2020-15248Privilege escalation by backend users assigned to the default "Publisher" system role
    >= 1.0.319, < 1.0.470
  • MEDIUM4.0CVE-2020-5299Potential CSV Injection vector in OctoberCMS
    >= 1.0.319, < 1.0.466
  • MEDIUM4.0CVE-2020-5298Reflected XSS when importing CSV in OctoberCMS
    >= 1.0.319, < 1.0.466
  • LOW3.7CVE-2020-4061Cross-site Scripting in October
    >= 1.0.319, < 1.0.467
  • LOW3.5CVE-2020-11083Stored XSS in October
    >= 1.0.319, < 1.0.466
  • LOW2.8CVE-2020-15249Stored XSS by authenticated backend user with access to upload files
    >= 1.0.319, < 1.0.469
  • CVE-2021-21265October CMS vulnerable to Potential Host Header Poisoning on misconfigured servers
    from 0, < 1.1.2