gleez/cms Security Advisories (6)
-
[CRITICAL] Gleez Cms Server Side Request Forgery (SSRF) vulnerability
PKSA-mtrr-v1fd-gk21 CVE-2021-27312 GHSA-7mxg-r76p-363g
Affected version: <=1.2.0
Reported by:
GitHub -
[MEDIUM] Gleez CMS Stored XSS
PKSA-wvzw-mppz-t1z7 CVE-2018-7035 GHSA-m2r2-qc49-gqw4
Affected version: =2.0.0|<=1.2.0
Reported by:
GitHub -
[MEDIUM] Gleez Cms Cross-site Scripting in Profile Page
PKSA-p8gb-rfmy-tm6j CVE-2018-1999021 GHSA-q9g7-pff4-548r
Affected version: <=1.3.0
Reported by:
GitHub -
[HIGH] Gleez CMS CSRF Allows Adding of Administrator Accounts
PKSA-g5pn-g26c-7m1q CVE-2018-15845 GHSA-g644-x4hj-cmhq
Affected version: <=1.2.0
Reported by:
GitHub -
[MEDIUM] Gleez CMS Vulnerable to Cross-site Scripting in media/imagecache/resize
PKSA-nh53-7z9g-fs7j CVE-2018-16347 GHSA-5qqx-32hw-5vx4
Affected version: <=1.2.0
Reported by:
GitHub -
[MEDIUM] Gleez CMS Vulnerability Allows Forced Browsing to Profile Page of Other Users
PKSA-nrc9-m8st-6jq6 CVE-2018-16704 GHSA-hh92-wg7v-8vfr
Affected version: <=1.2.0
Reported by:
GitHub