Vulnerabilities > Pagekit > Pagekit > 1.0.18

DATE CVE VULNERABILITY TITLE RISK
2023-08-28 CVE-2023-41005 Unspecified vulnerability in Pagekit 1.0.18
An issue in Pagekit pagekit v.1.0.18 alows a remote attacker to execute arbitrary code via thedownloadAction and updateAction functions in UpdateController.php
local
low complexity
pagekit
7.8
7.8
2022-04-01 CVE-2021-44135 SQL Injection vulnerability in Pagekit
pagekit all versions, as of 15-10-2021, is vulnerable to SQL Injection via Comment listing.
network
low complexity
pagekit CWE-89
critical
 10.0
10
2021-06-16 CVE-2021-32245 Cross-site Scripting vulnerability in Pagekit 1.0.18
In PageKit v1.0.18, a user can upload SVG files in the file upload portion of the CMS.
network
pagekit CWE-79
3.5
3.5