Vulnerabilities > Octobercms > October > 1.0.467

DATE CVE VULNERABILITY TITLE RISK
2020-11-23 CVE-2020-15247 Unspecified vulnerability in Octobercms October
October is a free, open-source, self-hosted CMS platform based on the Laravel PHP Framework.
local
low complexity
octobercms
5.2
5.2
2020-11-23 CVE-2020-15246 Path Traversal vulnerability in Octobercms October
October is a free, open-source, self-hosted CMS platform based on the Laravel PHP Framework.
network
low complexity
octobercms CWE-22
7.5
7.5
2020-07-31 CVE-2020-15128 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Octobercms October
In OctoberCMS before version 1.0.468, encrypted cookie values were not tied to the name of the cookie the value belonged to.
network
high complexity
octobercms CWE-327
6.3
6.3