| CVE-2017-1000194 |
critical |
9.8 |
9.8 |
9y ago |
October CMS File Upload Vulnerability |
|
| CVE-2017-16244 |
high |
8.8 |
8.8 |
9y ago |
October CMS CSRF |
|
| CVE-2017-1000193 |
medium |
6.1 |
6.1 |
9y ago |
October CMS XSS |
|
| CVE-2015-5612 |
medium |
— |
4.3 |
11y ago |
October CMS XSS In Caption Tag of Profile |
|
| CVE-2026-26274 |
unknown |
— |
— |
1mo ago |
October CMS has Safe Mode Bypass via Twig Database Write Operations |
|
| CVE-2024-51991 |
unknown |
— |
— |
1y ago |
October CMS Allows Unprotected SVG Rename in Media Manager |
|
| CVE-2024-45962 |
unknown |
— |
— |
2y ago |
October allows an admin account to upload PDF containing malicious JavaScript |
|
| CVE-2023-25365 |
unknown |
— |
— |
2y ago |
October CMS Cross-site Scripting vulnerability |
|
| CVE-2023-37692 |
unknown |
— |
— |
3y ago |
Stored Cross-Site Scripting October CMS |
|
| CVE-2018-1999009 |
unknown |
— |
— |
4y ago |
October CMS Local File Inclusion |
|
| CVE-2021-41126 |
unknown |
— |
— |
5y ago |
Deleted Admin Can Sign In to Admin Interface |
|