Package impact
Packagist / elmsln/haxcms
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-54378 | unknown | — | — | 10mo ago | HAX CMS API Lacks Authorization Checks | |||
| CVE-2025-54139 | unknown | — | — | 10mo ago | HAX CMS application pages vulnerable to clickjacking | |||
| CVE-2025-49138 | unknown | — | — | 1y ago | HAX CMS vulnerable to Local File Inclusion via saveOutline API Location Parameter | |||
| CVE-2025-49137 | unknown | — | — | 1y ago | Hax CMS Stored Cross-Site Scripting vulnerability |