Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

contao

1 Product 15 CVEs

CVE Severity Distribution (All Time)

Critical
0
High
5
Medium
8
Low
1

Timeline Overview

Last 30 Days 0 CVEs
Last 6 Months 0 CVEs
Last Year 4 CVEs

Products

View all

contao

33 Versions 15 CVEs

Recent CVEs

View all
CVE-2024-45965 MEDIUM 9 months, 3 weeks ago

Contao before 5.5.6 allows XSS via an SVG document. This affects (in contao/core-bundle in Composer) 4.x before 4.13.54, 5.0.x through 5.3.x before 5…

CVE-2024-45604 MEDIUM 10 months, 1 week ago

Contao is an Open Source CMS. In affected versions authenticated users in the back end can list files outside the document root in the file selector …

CVE-2024-45398 HIGH 10 months, 1 week ago

Contao is an Open Source CMS. In affected versions a back end user with access to the file manager can upload malicious files and execute them on the…

CVE-2024-45612 MEDIUM 10 months, 1 week ago

Contao is an Open Source CMS. In affected versions an untrusted user can inject insert tags into the canonical tag, which are then replaced on the we…