automad/automad Security Advisories (5)
-
[MEDIUM] Unrestricted File Upload affecting automad
PKSA-ckfv-jgcx-vn56 CVE-2023-7036 GHSA-fpph-mqc8-h6q5
Affected version: <=1.10.9
Reported by:
GitHub -
[MEDIUM] Authenticated Blind SSRF in automad/automad
PKSA-s7vb-651v-z4vk CVE-2023-7037 GHSA-q5q3-qm26-9jwm
Affected version: <=1.10.9
Reported by:
GitHub -
[MEDIUM] Cross-Site Request Forgery (CSRF) in automad/automad
PKSA-9bhq-j3vm-bjgh CVE-2023-7038 GHSA-4j8w-p6hv-3qxc
Affected version: <=1.10.9
Reported by:
GitHub -
[LOW] Stored Cross-site scripting affecting automad/automad
PKSA-fmnd-x5p3-k3rb CVE-2023-7035 GHSA-7j9h-ch38-474r
Affected version: <=1.10.9
Reported by:
GitHub -
[MEDIUM] Cross site scripting in automad/automad
PKSA-zz67-7tpz-cx3g CVE-2021-37502 GHSA-q3c8-65q7-9v78
Affected version: <1.8.0
Reported by:
GitHub