Vulnerabilities > Boltcms > Bolt > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-30 | CVE-2020-28925 | Unspecified vulnerability in Boltcms Bolt Bolt before 3.7.2 does not restrict filter options in a Request in the Twig context, and is therefore inconsistent with the "How to Harden Your PHP for Better Security" guidance. | 5.3 |
| 2020-06-08 | CVE-2020-4041 | Cross-site Scripting vulnerability in Boltcms Bolt In Bolt CMS before version 3.7.1, the filename of uploaded files was vulnerable to stored XSS. | 6.1 |
| 2020-06-08 | CVE-2020-4040 | Unspecified vulnerability in Boltcms Bolt Bolt CMS before version 3.7.1 lacked CSRF protection in the preview generating endpoint. | 4.3 |
| 2019-12-31 | CVE-2019-9553 | Cross-site Scripting vulnerability in Boltcms Bolt 3.6.4 Bolt 3.6.4 has XSS via the slug, teaser, or title parameter to editcontent/pages, a related issue to CVE-2017-11128 and CVE-2018-19933. | 6.1 |
| 2019-12-29 | CVE-2019-20058 | Cross-site Scripting vulnerability in Boltcms Bolt 3.7.0 Bolt 3.7.0, if Symfony Web Profiler is used, allows XSS because unsanitized search?search= input is shown on the _profiler page. | 6.1 |
| 2019-08-23 | CVE-2019-15485 | Cross-site Scripting vulnerability in Boltcms Bolt Bolt before 3.6.10 has XSS via createFolder or createFile in Controller/Async/FilesystemManager.php. | 6.1 |
| 2019-08-23 | CVE-2019-15484 | Cross-site Scripting vulnerability in Boltcms Bolt Bolt before 3.6.10 has XSS via an image's alt or title field. | 6.1 |
| 2019-08-23 | CVE-2019-15483 | Cross-site Scripting vulnerability in Boltcms Bolt Bolt before 3.6.10 has XSS via a title that is mishandled in the system log. | 6.1 |
| 2017-11-10 | CVE-2017-16754 | Incorrect Permission Assignment for Critical Resource vulnerability in Boltcms Bolt Bolt before 3.3.6 does not properly restrict access to _profiler routes, related to EventListener/ProfilerListener.php and Provider/EventListenerServiceProvider.php. | 5.3 |