| CVE-2017-1000194 |
critical |
9.8 |
9.8 |
|
|
|
9y ago |
October CMS File Upload Vulnerability |
| CVE-2017-16244 |
high |
8.8 |
9.8 |
|
|
|
9y ago |
October CMS CSRF |
| CVE-2017-1000193 |
medium |
6.1 |
6.1 |
|
|
|
9y ago |
October CMS XSS |
| CVE-2015-5612 |
medium |
— |
4.3 |
|
|
|
11y ago |
October CMS XSS In Caption Tag of Profile |
| CVE-2026-26274 |
unknown |
— |
— |
|
|
|
1mo ago |
October CMS has Safe Mode Bypass via Twig Database Write Operations |
| CVE-2024-51991 |
unknown |
— |
— |
|
|
|
1y ago |
October CMS Allows Unprotected SVG Rename in Media Manager |
| CVE-2024-45962 |
unknown |
— |
— |
|
|
|
2y ago |
October allows an admin account to upload PDF containing malicious JavaScript |
| CVE-2023-25365 |
unknown |
— |
— |
|
|
|
2y ago |
October CMS Cross-site Scripting vulnerability |
| CVE-2023-37692 |
unknown |
— |
— |
|
|
|
3y ago |
Stored Cross-Site Scripting October CMS |
| CVE-2018-1999009 |
unknown |
— |
— |
|
|
|
4y ago |
October CMS Local File Inclusion |
| CVE-2021-41126 |
unknown |
— |
— |
|
|
|
5y ago |
Deleted Admin Can Sign In to Admin Interface |
