16
I Use This!
Activity Not Available
Analyzed 4 months ago. based on code collected 5 months ago.
 

Security

Vulnerabilities per Version

Learn more about BDSAs
 
 

Major Versions

1yr
3yr
5yr
10yr
All
click and drag to zoom
 
 
Security Vulnerabilities for Version:
Severities:
Type
Identifier Related Record Severity Date Published Description Versions Affected
CVE-2019-25070 Medium Jun 09, 2022 ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in WolfCMS up to 0.8.3.1. It has been rated as problematic. This issue affects some unknown p more...
0.8.3.1, 0.8.3, 0.8.2, 0.8.1, 0.8.0, 0.7.8, 0.7.7, 0.7.6, 0.7.5, 0.7.3
CVE-2019-10646 Medium Mar 30, 2019 Wolf CMS v0.8.3.1 is affected by cross site scripting (XSS) in the module Add Snippet (/?/admin/snippet/add). This allows an attacker to insert arbitra more...
0.8.3.1
CVE-2018-8814 BDSA-2018-1041 Medium Apr 04, 2018 Cross-site request forgery (CSRF) vulnerability in WolfCMS 0.8.3.1 allows remote attackers to hijack the authentication of users for requests that modi more...
0.8.3.1
CVE-2018-8813 BDSA-2018-1040 Medium Apr 04, 2018 Open redirect vulnerability in the login[redirect] parameter login functionality in WolfCMS 0.8.3.1 allows remote attackers to redirect users to arbitr more...
0.8.3.1
CVE-2018-6890 Medium Feb 22, 2018 Cross-site scripting (XSS) vulnerability in Wolf CMS 0.8.3.1 via the page editing feature, as demonstrated by /?/admin/page/edit/3.
0.8.3.1
CVE-2018-18824 Medium Apr 25, 2019 WolfCMS v0.8.3.1 allows XSS via an SVG file to /?/admin/plugin/file_manager/browse/.
0.8.3.1
CVE-2018-18823 Medium Apr 25, 2019 WolfCMS 0.8.3.1 allows XSS via an SVG file to /?/admin/plugin/file_manager/browse/.
0.8.3.1
CVE-2018-15842 Medium Aug 25, 2018 WolfCMS 0.8.3.1 has XSS via the /?/admin/page/add slug parameter.
0.8.3.1
CVE-2018-14837 Medium Aug 10, 2018 Wolf CMS 0.8.3.1 has XSS in the Snippets tab, as demonstrated by a ?/admin/snippet/edit/1 URI.
0.8.3.1
CVE-2018-1000087 Medium Mar 13, 2018 WolfCMS version version 0.8.3.1 contains a Reflected Cross Site Scripting vulnerability in "Create New File" and "Create New Directory" input box from more...
0.8.3.1