Halo

Halo

33 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2020-18979

Exploit
  • EPSS 0.22%
  • Veröffentlicht 12.07.2021 15:15:07
  • Zuletzt bearbeitet 21.11.2024 05:08:53

Cross Siste Scripting (XSS) vulnerablity in Halo 0.4.3 via the X-forwarded-for Header parameter.

6.1

CVE-2020-21345

Exploit
  • EPSS 0.22%
  • Veröffentlicht 20.05.2021 17:15:07
  • Zuletzt bearbeitet 21.11.2024 05:12:31

Cross Site Scripting (XSS) vulnerability in Halo 1.1.3 via post publish components in the manage panel, which lets a remote malicious user execute arbitrary code.

8.5

CVE-2020-21527

  • EPSS 0.51%
  • Veröffentlicht 30.09.2020 18:15:24
  • Zuletzt bearbeitet 21.11.2024 05:12:39

There is an Arbitrary file deletion vulnerability in halo v1.1.3. A backup function in the background allows a user, when deleting their backup files, to delete any files on the system through directory traversal.

9.8

CVE-2020-21526

Exploit
  • EPSS 1.28%
  • Veröffentlicht 30.09.2020 18:15:24
  • Zuletzt bearbeitet 21.11.2024 05:12:39

An Arbitrary file writing vulnerability in halo v1.1.3. In an interface to write files in the background, a directory traversal check is performed on the input path parameter, but the startsWith function can be used to bypass it.

7.5

CVE-2020-21525

Exploit
  • EPSS 1.17%
  • Veröffentlicht 30.09.2020 18:15:24
  • Zuletzt bearbeitet 21.11.2024 05:12:39

Halo V1.1.3 is affected by: Arbitrary File reading. In an interface that reads files in halo v1.1.3, a directory traversal check is performed on the input path parameter, but the startsWith function can be used to bypass it.

9.1

CVE-2020-21524

Exploit
  • EPSS 0.29%
  • Veröffentlicht 30.09.2020 18:15:24
  • Zuletzt bearbeitet 21.11.2024 05:12:39

There is a XML external entity (XXE) vulnerability in halo v1.1.3, The function of importing other blogs in the background(/api/admin/migrations/wordpress) needs to parse the xml file, but it is not used for security defense, This vulnerability can d...

10

CVE-2020-21523

Exploit
  • EPSS 0.84%
  • Veröffentlicht 30.09.2020 18:15:23
  • Zuletzt bearbeitet 21.11.2024 05:12:38

A Server-Side Freemarker template injection vulnerability in halo CMS v1.1.3 In the Edit Theme File function. The ftl file can be edited. This is the Freemarker template file. This file can cause arbitrary code execution when it is rendered in the ba...

9.8

CVE-2020-21522

Exploit
  • EPSS 0.59%
  • Veröffentlicht 30.09.2020 18:15:23
  • Zuletzt bearbeitet 21.11.2024 05:12:38

An issue was discovered in halo V1.1.3. A Zip Slip Directory Traversal Vulnerability in the backend,the attacker can overwrite some files, such as ftl files, .bashrc files in the user directory, and finally get the permissions of the operating system...

5.4

CVE-2020-19007

Exploit
  • EPSS 0.19%
  • Veröffentlicht 26.08.2020 14:15:10
  • Zuletzt bearbeitet 21.11.2024 05:08:54

Halo blog 1.2.0 allows users to submit comments on blog posts via /api/content/posts/comments. The javascript code supplied by the attacker will then execute in the victim user's browser.

7.2

CVE-2019-19999

Exploit
  • EPSS 0.44%
  • Veröffentlicht 26.12.2019 04:15:10
  • Zuletzt bearbeitet 21.11.2024 04:35:49

Halo before 1.2.0-beta.1 allows Server Side Template Injection (SSTI) because TemplateClassResolver.SAFER_RESOLVER is not used in the FreeMarker configuration.