publify_project publify CVE 漏洞(13)

CVE 數: 13 CPE versions: View versions table

摘要

本頁列出影響 publify_project publify 的已公開 CVE 漏洞(透過 NVD CPE 關聯)。每列包含嚴重程度評分、摘要與發布日期,便於識別與分析安全議題。

顯示 11313 CVE 數
«« 第一頁 « 上一頁 第 1 / 1 頁 下一頁 »
CVE 摘要 來源 最高 CVSS EPSS % 公開時間 更新時間
CVE-2023-0569 Weak Password Requirements in GitHub repository publify/publify prior to 9.2.10. [email protected] 6.5 0.70% 2023-01-29 2026-06-17
CVE-2023-0299 Improper Input Validation in GitHub repository publify/publify prior to 9.2.10. [email protected] 9.8 0.91% 2023-01-14 2026-06-17
CVE-2022-2815 Insecure Storage of Sensitive Information in GitHub repository publify/publify prior to 9.2.10. [email protected] 6.5 0.56% 2023-01-14 2026-06-17
CVE-2022-1812 Integer Overflow or Wraparound in GitHub repository publify/publify prior to 9.2.10. [email protected] 9.8 30.78% 2023-01-14 2026-06-17
CVE-2022-1811 Unrestricted Upload of File with Dangerous Type in GitHub repository publify/publify prior to 9.2.9. [email protected] 5.4 0.71% 2022-05-23 2026-06-17
CVE-2022-1810 Authorization Bypass Through User-Controlled Key in GitHub repository publify/publify prior to 9.2.9. [email protected] 4.3 0.79% 2022-05-23 2026-06-17
CVE-2022-1553 Leaking password protected articles content due to improper access control in GitHub repository publify/publify prior to 9.2.8. Attackers can leverage this vulnerability to view the contents of any password-protected article present on the publify website, compromising confidentiality and integrity of users. [email protected] 4.9 1.17% 2022-05-16 2026-06-17
CVE-2022-0578 Code Injection in GitHub repository publify/publify prior to 9.2.8. [email protected] 6.5 0.85% 2022-05-16 2026-06-17
CVE-2022-0574 Improper Access Control in GitHub repository publify/publify prior to 9.2.8. [email protected] 6.5 0.79% 2022-05-16 2026-06-17
CVE-2022-0524 Business Logic Errors in GitHub repository publify/publify prior to 9.2.7. [email protected] 7.5 1.57% 2022-02-08 2026-06-17
CVE-2021-25975 In publify, versions v8.0 to v9.2.4 are vulnerable to stored XSS as a result of an unrestricted file upload. This issue allows a user with “publisher” role to inject malicious JavaScript via the uploaded html file. [email protected] 5.4 0.58% 2021-11-10 2026-06-16
CVE-2021-25974 In Publify, versions v8.0 to v9.2.4 are vulnerable to stored XSS. A user with a “publisher” role is able to inject and execute arbitrary JavaScript code while creating a page/article. [email protected] 5.4 0.58% 2021-11-10 2026-06-16
CVE-2021-25973 In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control. “guest” role users can self-register even when the admin does not allow. This happens due to front-end restriction only. [email protected] 6.5 0.80% 2021-11-02 2026-06-16
«« 第一頁 « 上一頁 第 1 / 1 頁 下一頁 »
cvelogic Threat Intelligence