pagekit/pagekit Security Advisories for 0.9.5 (8)
-
[HIGH] Command injection in pagekit
PKSA-rc2g-q41f-cm8c CVE-2023-41005 GHSA-j6mp-hx4g-p3gm
Affected version: <=1.0.18
Reported by:
GitHub -
[CRITICAL] Pagekit vulnerable to Unrestricted Upload of File with Dangerous Type
PKSA-4rvj-3fnm-7gh1 CVE-2022-38916 GHSA-4v5m-vwvp-p7w8
Affected version: <=1.0.18
Reported by:
GitHub -
[MEDIUM] Pagekit CMS cross-site scripting in Markdown text box where articles are edited
PKSA-jd4w-bndn-gd62 CVE-2022-36573 GHSA-q6h8-qjjc-j8cg
Affected version: <=1.0.18
Reported by:
GitHub -
[HIGH] Pagekit File Upload vulnerability
PKSA-w36t-6d22-4y29 CVE-2019-19013 GHSA-692x-89xv-64jx
Affected version: <=1.0.17
Reported by:
GitHub -
[MEDIUM] Pagekit open redirect vulnerability
PKSA-nrgd-k7zp-y66n CVE-2018-14381 GHSA-v47j-rw9h-6m47
Affected version: <1.0.14
Reported by:
GitHub -
[HIGH] Pagekit Weak Password Recovery Mechanism for Forgotten Password
PKSA-19by-w8m1-5td2 CVE-2017-5594 GHSA-rp89-32rp-qpq2
Affected version: <1.0.11
Reported by:
GitHub -
[CRITICAL] SQL injection in pagekit/pagekit
PKSA-yhqh-bz8s-rgng CVE-2021-44135 GHSA-45hc-r4fj-qj89
Affected version: <=1.0.18
Reported by:
GitHub -
[MEDIUM] Cross-site scripting in PageKit
PKSA-rr22-pbjk-fzcf CVE-2021-32245 GHSA-mrwr-2945-fr22
Affected version: <=1.0.18
Reported by:
GitHub