Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1
CVE-2018-14381
- EPSS 0.2%
- Veröffentlicht 18.07.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:48:57
Pagekit before 1.0.14 has a /user/login?redirect= open redirect vulnerability.
4.8
CVE-2018-11564
- EPSS 0.95%
- Veröffentlicht 02.06.2018 01:29:05
- Zuletzt bearbeitet 21.11.2024 03:43:37
Stored XSS in YOOtheme Pagekit 1.0.13 and earlier allows a user to upload malicious code via the picture upload feature. A user with elevated privileges could upload a photo to the system in an SVG format. This file will be uploaded to the system and...
7.5
CVE-2017-5594
- EPSS 4.96%
- Veröffentlicht 25.01.2017 18:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
An issue was discovered in Pagekit CMS before 1.0.11. In this vulnerability the remote attacker is able to reset the registered user's password, when the debug toolbar is enabled. The password is successfully recovered using this exploit. The SecureL...