Vulnerabilities > Publify Project

DATE CVE VULNERABILITY TITLE RISK
2021-11-10 CVE-2021-25974 Cross-site Scripting vulnerability in Publify Project Publify
In Publify, versions v8.0 to v9.2.4 are vulnerable to stored XSS.
3.5
2021-11-10 CVE-2021-25975 Cross-site Scripting vulnerability in Publify Project Publify
In publify, versions v8.0 to v9.2.4 are vulnerable to stored XSS as a result of an unrestricted file upload.
3.5
2021-11-02 CVE-2021-25973 Incorrect Resource Transfer Between Spheres vulnerability in Publify Project Publify
In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control.
network
low complexity
publify-project CWE-669
6.4
2020-01-09 CVE-2014-3211 Resource Exhaustion vulnerability in Publify Project Publify
Publify before 8.0.1 is vulnerable to a Denial of Service attack
network
low complexity
publify-project CWE-400
5.0